Poster - CVE CyberSecurity Database News (Page 207)

Feb 20, 2025 RCE API

CVE-2025-0868 - Remote Code Execution in DocsGPT via /api/remote and Unsafe JSON Parsing

Summary: A critical vulnerability (CVE-2025-0868) has been found in popular open-source documentation assistant DocsGPT, versions .8.1 through .12.. If you're running an

Feb 20, 2025 RCE Windows Microsoft API Exploit

CVE-2025-27218 - Critical Remote Code Execution in Sitecore XM/XP 10.4 via Insecure Deserialization

Sitecore is a popular enterprise-grade content management system used by organizations worldwide. In March 2025, a serious vulnerability was identified in Sitecore Experience Manager (XM)

Feb 20, 2025

CVE-2025-1293 - How Weak JWT Validation in Hermes (<=.4.) Let Attackers Slip Past AWS ALB Authentication

In the world of cloud-native services, security issues can quickly ripple out and create huge risks for organizations. One such issue was discovered in Hermes—

Feb 19, 2025 Microsoft Exploit

CVE-2025-24989 - Power Pages Improper Access Control Flaw Explained, With Exploit Details

In early 2025, security researchers found an improper access control vulnerability in Microsoft's Power Pages platform, tracked as CVE-2025-24989. This issue allowed unauthorized

Feb 19, 2025 Windows Microsoft API Exploit

CVE-2025-21355 - How Missing Authentication in Microsoft Bing Puts Your Network at Risk

--- In June 2025, security researchers discovered a severe vulnerability in Microsoft Bing, tracked as CVE-2025-21355. This issue centers around missing authentication in a critical