Poster - CVE CyberSecurity Database News (Page 170)

Mar 4, 2025 API Exploit

CVE-2024-47262 - Race Condition in AXIS OS VAPIX param.cgi Blocks Device Web Access

*Written by: SecureCodePost AI - Exclusive long read* Introduction In June 2024, Dzmitry Lukyanenka—a member of the AXIS OS Bug Bounty Program—uncovered a

Mar 4, 2025 RCE WordPress PHP

CVE-2025-0912 - Critical PHP Object Injection and RCE in Donations Widget WordPress Plugin (Up to 3.19.4)

WordPress is all about making things easier, from blogging to taking donations. But sometimes, plugins built to help can be a big risk. One such

Mar 4, 2025 API Exploit Java

CVE-2025-1695 - NGINX Unit Java Module Vulnerability Could Trigger CPU Spikes and Limited DoS

Published: June 2024 Severity: Medium Affected Product: NGINX Unit (Java Language Module) Versions Impacted: Before 1.34.2 In this post, we'll dig

Mar 4, 2025 API Exploit Java

CVE-2025-27221 - How Ruby’s URI Gem Leaks Authentication Credentials—Vulnerability Details, Exploit, and Fixes

In early 2025, a critical vulnerability was discovered in the widely-used URI gem for Ruby, listed as CVE-2025-27221. This issue affects all versions before 1.

Mar 4, 2025

CVE-2025-27220 - Breaking Down the CGI Ruby Gem ReDoS Vulnerability (Before .4.2)

Ruby’s CGI gem is a widely used library that helps web applications handle HTTP requests and escape HTML. In early 2025, a critical bug