Poster - CVE CyberSecurity Database News (Page 250)

Feb 8, 2025 XSS WordPress PHP

CVE-2025-0169 - Exploiting Stored Cross-Site Scripting (XSS) in DWT - Directory & Listing WordPress Theme (<= 3.3.4)

The web is full of themes and plugins that make WordPress shine, but sometimes, a simple oversight in code can lead to serious security holes.

Feb 8, 2025 WordPress Exploit

CVE-2025-0316 - Authentication Bypass in WordPress Directorybox Manager Plugin ≤ 2.5 - Full Analysis and Exploit

CVE-2025-0316 is a critical vulnerability affecting the popular Directorybox Manager plugin for WordPress. Versions up to and including 2.5 are impacted. The flaw lets

Feb 7, 2025

CVE-2025-25183 - How Predictable Hash Collisions in vLLM Can Let Attackers Interfere with AI Responses

Summary: vLLM is a popular inference and serving engine often used to run large language models (LLMs) efficiently. It supports advanced features like prefix caching

Feb 7, 2025 Exploit

CVE-2022-26388 - Hard-Coded Passwords Threaten ELI Electrocardiographs

*Published June 2024* *By SecurePulse Research Team* Medical devices help save lives — but what happens when those same devices are left wide open for attackers?

Feb 7, 2025 XSS

CVE-2024-10383 - Critical XSS Vulnerability in GitLab Web IDE – Explained with Exploit Example

A serious security flaw has been discovered and tracked as CVE-2024-10383, impacting the popular GitLab code collaboration platform. The issue exists in its gitlab-web-ide-vscode-fork component,