Poster - CVE CyberSecurity Database News (Page 60)

Apr 27, 2025 Windows Microsoft API Exploit

CVE-2025-46579 - DDE Injection Vulnerability in GoldenDB – How Hackers Can Sneak in Commands

GoldenDB is a well-known database product that’s widely used in financial and commercial sectors. Recently, security researchers have identified a serious vulnerability—CVE-2025-46579—that

Apr 26, 2025

CVE-2025-46653 - How a Weak Random Token in Formidable Puts Your Uploads at Risk

Formidable (aka node-formidable) is a popular Node.js module for parsing form data, including file uploads. It's used by thousands of projects worldwide.

Apr 26, 2025 Exploit

CVE-2025-46646 - Ghostscript's Incomplete Patch Creates Overlong UTF-8 Decoding Risk

Artifex Ghostscript is a popular open source tool for processing PDFs, PostScript files, and other document formats. On June 2024, a new vulnerability (CVE-2025-46646) was

Apr 26, 2025 Exploit PHP

CVE-2024-53636 - Exploiting Arbitrary File Upload in Serosoft Academia SIS EagleR-1..118

A serious security vulnerability has been discovered in the Serosoft Academia Student Information System (SIS) EagleR-1..118. Identified as CVE-2024-53636, this flaw allows an attacker

Apr 25, 2025 Windows Exploit

CVE-2025-3935 - ScreenConnect ViewState Injection Vulnerability Explained

ScreenConnect, a popular remote support tool, faces a new security buzz with the identification of CVE-2025-3935. This technical post unpacks what this vulnerability really means,