Poster - CVE CyberSecurity Database News (Page 246)

Feb 9, 2025 XSS WordPress SQL

CVE-2024-13440 - Critical SQL Injection in Super Store Finder WordPress Plugin (Up to v7.) — How It Works, Exploit Details & Code Example

CVE-2024-13440 is a newly identified vulnerability found in the popular Super Store Finder plugin for WordPress. If you’re running any version up to 7.

Feb 8, 2025 XSS WordPress PHP

CVE-2025-0169 - Exploiting Stored Cross-Site Scripting (XSS) in DWT - Directory & Listing WordPress Theme (<= 3.3.4)

The web is full of themes and plugins that make WordPress shine, but sometimes, a simple oversight in code can lead to serious security holes.

Feb 8, 2025 WordPress Exploit

CVE-2025-0316 - Authentication Bypass in WordPress Directorybox Manager Plugin ≤ 2.5 - Full Analysis and Exploit

CVE-2025-0316 is a critical vulnerability affecting the popular Directorybox Manager plugin for WordPress. Versions up to and including 2.5 are impacted. The flaw lets

Feb 7, 2025

CVE-2025-25183 - How Predictable Hash Collisions in vLLM Can Let Attackers Interfere with AI Responses

Summary: vLLM is a popular inference and serving engine often used to run large language models (LLMs) efficiently. It supports advanced features like prefix caching

Feb 7, 2025 Exploit

CVE-2022-26388 - Hard-Coded Passwords Threaten ELI Electrocardiographs

*Published June 2024* *By SecurePulse Research Team* Medical devices help save lives — but what happens when those same devices are left wide open for attackers?