Poster - CVE CyberSecurity Database News (Page 228)

Feb 12, 2025 XSS

CVE-2025-0376 - Serious XSS Vulnerability in GitLab (13.3 to 17.8.1) and How It Can Be Exploited

A critical Cross-Site Scripting (XSS) vulnerability was discovered in GitLab CE/EE (Community and Enterprise Edition). This flaw, tracked as CVE-2025-0376, lets an attacker run

Feb 12, 2025 API Exploit

CVE-2024-12379 - How Attackers Crash GitLab with Unbounded Symbol Creation

In early 2024, CVE-2024-12379 was announced, highlighting a dangerous Denial of Service (DoS) flaw in GitLab Community Edition (CE) and GitLab Enterprise Edition (EE). This

Feb 12, 2025 API PHP

CVE-2025-26357 - Path Traversal Vulnerability in Q-Free MaxTime ≤ 2.11. (Exploit & Technical Breakdown)

CVE-2025-26357 is a critical Path Traversal vulnerability (CWE-35) discovered in the Q-Free MaxTime traffic management software, affecting all versions up to and including 2.11.

Feb 12, 2025

CVE-2025-21699 - Inside the Linux Kernel’s gfs2 Flag Flaw (With Code and Exploit Details)

In early 2025, the Linux kernel team resolved a potentially dangerous vulnerability in the gfs2 filesystem. Tracked as CVE-2025-21699, this bug stemmed from how the

Feb 12, 2025

CVE-2025-21697 - How a Missed NULL Pointer in Linux Kernel's V3D DRM Could Cause Trouble

In 2024, security researchers found an issue in the Linux kernel’s graphics subsystem, specifically in the Broadcom V3D (VideoCore IV 3D) DRM (Direct Rendering