Poster - CVE CyberSecurity Database News (Page 233)

Feb 12, 2025 API SQL Apache

CVE-2024-32838 - SQL Injection in Apache Fineract REST API Endpoints – What You Need to Know

In June 2024, a critical security vulnerability was disclosed in Apache Fineract (official advisory link), an open-source platform known for powering microfinance and digital lending

Feb 12, 2025 RCE Exploit PHP

CVE-2025-1186 - Critical Remote Deserialization Vulnerability in XunRuiCMS <=4.6.4 (Exploit Details Inside)

A new critical security flaw, CVE-2025-1186, has been found in *XunRuiCMS*, an open-source content management system widely used in the Chinese web development community. According

Feb 12, 2025

CVE-2025-23359 - Breaking Down the NVIDIA Container Toolkit TOCTOU Vulnerability (PoC, Technical Details & Exploit Insights)

Published: June 2024 Severity: Critical CVE-ID: CVE-2025-23359 Vendor: NVIDIA Component: NVIDIA Container Toolkit (Linux) Vulnerability Type: Time-of-Check Time-of-Use (TOCTOU) Attack Vector: Malicious/Evil Container Image

Feb 12, 2025 API Exploit

CVE-2024-53880 - Exploiting NVIDIA Triton Inference Server Model File Integer Overflow Vulnerability

NVIDIA Triton Inference Server is widely used for deploying machine learning models at scale. Security researchers recently discovered a serious vulnerability tracked as CVE-2024-53880. This

Feb 12, 2025 Exploit Cisco

CVE-2020-3432: Understanding the Vulnerability in Cisco AnyConnect Secure Mobility Client for macOS

CVE-2020-3432 is a vulnerability that affects the uninstaller component of Cisco AnyConnect Secure Mobility Client for macOS. This vulnerability arises from the incorrect handling of