CVE-2023-6502 - Denial of Service in GitLab Wiki - How Attackers Crashed GitLab with A Simple Wiki Page
In early 2024, security researchers identified a new vulnerability labeled CVE-2023-6502 that affected several versions of GitLab CE/EE. This flaw opened the door for
CVE-2024-5165 - Critical XSS Vulnerabilities in Eclipse Ditto’s User Interface
Eclipse Ditto is a widely used open-source framework that helps you build digital twins for IoT (Internet of Things) applications. But between versions 3.. and
CVE-2024-2861 - Exploiting Stored XSS in ProfilePress WordPress Plugin (v4.15.8 and Below)
In the first half of 2024, a critical vulnerability—CVE-2024-2861—was discovered in the popular ProfilePress plugin for WordPress. If you’re running a site
CVE-2024-4779 - SQL Injection Vulnerability in Unlimited Elements For Elementor Plugin Exposes WordPress Sites
A critical vulnerability, CVE-2024-4779, has been discovered in the popular WordPress plugin Unlimited Elements For Elementor (Free Widgets, Addons, Templates). This vulnerability, present in all
CVE-2024-5264 - How Weak Network Transfer in Thales Luna EFT 2.1+ Exposes Backup Data
CVE-2024-5264 is a newly disclosed vulnerability affecting the Thales Luna EFT hardware security module (HSM) series, starting with version 2.1. The weakness is found
Episode
00:00:00
00:00:00