Poster - CVE CyberSecurity Database News (Page 153)

Mar 13, 2025 API Exploit PHP

CVE-2025-1257 - Denial of Service in GitLab EE APIs - Full Analysis and Exploit Details

In April 2025, a vulnerability cataloged as CVE-2025-1257 was disclosed affecting GitLab Enterprise Edition (EE) across multiple versions. This flaw makes specific API endpoints in

Mar 13, 2025 API

CVE-2024-12380 - How GitLab Repo Mirroring Could Leak Your Secrets

GitLab is one of the most popular tools for collaborative software development. But sometimes, even big names get things wrong. Today, we’ll dive into

Mar 13, 2025 API Exploit

CVE-2024-7296 - GitLab EE Membership Approval Bypass Explained with Exploit Details

Recently, security researchers uncovered a significant vulnerability in GitLab Enterprise Edition (EE) tracked as CVE-2024-7296. If you’re running GitLab in your organization and depend

Mar 13, 2025 Exploit Java

CVE-2020-36843: EdDSA-Java Signature Malleability Exploit in Versions through .3.

A security vulnerability has recently been discovered in the EdDSA-Java (aka ed25519-java) library, specifically in versions up to and including .3.. This vulnerability, documented as

Mar 12, 2025

CVE-2025-25292 - How ruby-saml’s XML Parser Difference Led to SSO Authentication Bypass

ruby-saml is a popular Ruby library for supporting Security Assertion Markup Language (SAML) single sign-on (SSO). Widely used in Ruby applications, it’s trusted by