Poster - CVE CyberSecurity Database News (Page 311)

Jan 21, 2025 API PHP

CVE-2025-24011 - Information Disclosure in Umbraco CMS UserExistance via API Timing Attack

In June 2025, a new vulnerability has been disclosed for the Umbraco .NET content management system (CMS), tracked as CVE-2025-24011. This issue affects all releases

Jan 21, 2025

CVE-2025-0377 - Exploiting the Zip-Slip Vulnerability in HashiCorp’s go-slug Library

On January 5, 2025, a major vulnerability surfaced in the open-source ecosystem: CVE-2025-0377, impacting HashiCorp’s go-slug library. This flaw exposes applications to a variant

Jan 21, 2025 WordPress Exploit SQL PHP

CVE-2025-22710 - Blind SQL Injection in StoreApps Smart Manager (Up to v8.52.) – Deep Dive and Exploit Example

Published: June 2024 CVE: CVE-2025-22710 Affected Product: StoreApps Smart Manager (for WooCommerce) Vulnerable Versions: All versions up to and including 8.52. Vulnerability Type: Blind

Jan 21, 2025 Exploit

CVE-2024-57946 - Linux Kernel virtio-blk Suspend Queue Freeze Vulnerability Explained

A recently resolved vulnerability in the Linux kernel (CVE-2024-57946) centers on how virtio-blk, the virtual block device driver, handles I/O queues during system suspend

Jan 21, 2025

CVE-2024-57940 - Critical Infinite Loop in Linux Kernel exFAT Filesystem (Explained & Exploited)

In June 2024, the Linux kernel community resolved a potentially serious vulnerability identified as CVE-2024-57940. This bug affected the exFAT filesystem, which is widely used