Poster - CVE CyberSecurity Database News (Page 232)

Feb 12, 2025 API Exploit

CVE-2024-12379 - How Attackers Crash GitLab with Unbounded Symbol Creation

In early 2024, CVE-2024-12379 was announced, highlighting a dangerous Denial of Service (DoS) flaw in GitLab Community Edition (CE) and GitLab Enterprise Edition (EE). This

Feb 12, 2025 API PHP

CVE-2025-26357 - Path Traversal Vulnerability in Q-Free MaxTime ≤ 2.11. (Exploit & Technical Breakdown)

CVE-2025-26357 is a critical Path Traversal vulnerability (CWE-35) discovered in the Q-Free MaxTime traffic management software, affecting all versions up to and including 2.11.

Feb 12, 2025

CVE-2025-21699 - Inside the Linux Kernel’s gfs2 Flag Flaw (With Code and Exploit Details)

In early 2025, the Linux kernel team resolved a potentially dangerous vulnerability in the gfs2 filesystem. Tracked as CVE-2025-21699, this bug stemmed from how the

Feb 12, 2025

CVE-2025-21697 - How a Missed NULL Pointer in Linux Kernel's V3D DRM Could Cause Trouble

In 2024, security researchers found an issue in the Linux kernel’s graphics subsystem, specifically in the Broadcom V3D (VideoCore IV 3D) DRM (Direct Rendering

Feb 12, 2025 XSS WordPress API Exploit

CVE-2024-10322 - How Brizy – Page Builder Plugin for WordPress Was Vulnerable to Authenticated SVG XSS

--- If you use WordPress to build sites, you may have heard of Brizy – Page Builder, a popular plugin used on more than 90,000