Poster - CVE CyberSecurity Database News (Page 151)

Mar 12, 2025 Exploit PHP

CVE-2025-2219 - Critical Unrestricted File Upload Vulnerability in LoveCards LoveCardsV2 <= 2.3.2

A severe security flaw, tracked as CVE-2025-2219, has been discovered in the popular LoveCardsV2 application, versions up to and including 2.3.2. This vulnerability

Mar 11, 2025 API

CVE-2025-2233 - Samsung SmartThings Hub API Authentication Bypass Explained

Warning: A recent vulnerability, tracked as CVE-2025-2233, puts some Samsung SmartThings devices at risk of attack. If you have a SmartThings Hub, this long-read will

Mar 11, 2025 CSRF API Exploit

CVE-2025-28886 - Understanding and Exploiting the CSRF Vulnerability in xjb REST API TO MiniProgram (Versions through 4.7.1)

--- Introduction A critical security vulnerability, tracked as CVE-2025-28886, has been found in the popular xjb REST API TO MiniProgram. This flaw involves a Cross-Site

Mar 11, 2025

CVE-2025-27789 - Babel Regex Named Capture Groups Lead to Quadratic Performance Bug – How It Works & How to Fix

Babel helps developers use cutting-edge JavaScript—years before browsers understand it—by compiling new features to older code. However, in versions of Babel before 7.

Mar 11, 2025 Safari iOS Exploit

CVE-2025-24201 - Out-of-Bounds Write in WebKit—A Deep Dive Into the Latest Apple Security Patch

On July 2025, Apple released urgent security fixes across all major platforms to address a high-risk vulnerability, CVE-2025-24201. This post walks you through what went