Poster - CVE CyberSecurity Database News (Page 220)

Feb 14, 2025 API Exploit

CVE-2025-25288 - ReDoS Vulnerability in @octokit/plugin-paginate-rest – Explained With Exploit and Patch

@octokit/plugin-paginate-rest is a popular npm package that adds pagination support to GitHub’s Octokit REST client. If you’ve used GitHub’s API for

Feb 14, 2025 API

CVE-2025-25285 - ReDoS Vulnerability in @octokit/endpoint — Exploit Details and Practical Guide

If you develop with GitHub APIs, you’ve probably come across the @octokit/endpoint package. This library helps turn REST API endpoint descriptions into ready-to-use

Feb 14, 2025 XSS Exploit PHP

CVE-2025-25988 - Cross Site Scripting in hooskcms v1.8 - Exploit, Analysis, and Mitigation

Published: 2024-06-28 *Author: [Your Name or Handle]* Overview A serious vulnerability, CVE-2025-25988, has been discovered affecting hooskcms v1.8, an open-source content management system. This

Feb 14, 2025

CVE-2025-25204 - How a Simple Exit Code Bug in `gh attestation verify` Could Threaten Your Artifact Security

In early 2025, security researchers discovered a critical yet subtle vulnerability in GitHub’s official command line tool, gh, affecting versions 2.49. through 2.

Feb 14, 2025

CVE-2024-57790 - Hardcoded Root Credentials in IXON B.V. IXrouter IX240 v3. Exposes Critical Industrial Systems

Date: June 2024 Vulnerability ID: CVE-2024-57790 Product Affected: IXON B.V. IXrouter IX240 (Industrial Edge Gateway) v3. Components: Physical device, non-volatile flash memory Attack Vector: