Poster - CVE CyberSecurity Database News (Page 779)

May 20, 2024 PHP

CVE-2024-34193 - Path Traversal Vulnerability in smanga 3.2.7 Lets Attackers Read Any File

A new security issue has been discovered in smanga version 3.2.7, a popular manga CMS. This vulnerability, registered as CVE-2024-34193, allows attackers to

May 20, 2024 RCE Exploit

CVE-2024-29651 - How Prototype Pollution in json-schema-ref-parser v11../11.1. Enables Arbitrary Code Execution

--- Introduction In March 2024, a significant security flaw was discovered in the widely-used json-schema-ref-parser library. Tracked as CVE-2024-29651, this vulnerability affects versions 11.. and

May 20, 2024

CVE-2024-35579 - Stack Overflow Vulnerability in Tenda AX1806 (v1...1) via `iptv.city.vlan` Parameter

In June 2024, a serious vulnerability known as CVE-2024-35579 was discovered in the Tenda AX1806 router, version 1...1. This model is popular for its

May 20, 2024 API Exploit

CVE-2024-31714 - Buffer Overflow in Waxlab Wax .9-3 and Earlier Lets Attackers Crash Apps with Lua

Security vulnerabilities in open source software aren’t just for the big names — sometimes a smaller project like Waxlab's "wax" can

May 20, 2024 Windows API

CVE-2024-24293 - Prototype Pollution and Remote Code Execution in `@bit/loader` v10..3 Explained

CVE-2024-24293 is a serious vulnerability discovered in the @bit/loader npm package (maintained by MiguelCastillo), specifically up to and including version 10..3. This post