CVE-2024-31714 - Buffer Overflow in Waxlab Wax .9-3 and Earlier Lets Attackers Crash Apps with Lua
Security vulnerabilities in open source software aren’t just for the big names — sometimes a smaller project like Waxlab's "wax" can
CVE-2024-24293 - Prototype Pollution and Remote Code Execution in `@bit/loader` v10..3 Explained
CVE-2024-24293 is a serious vulnerability discovered in the @bit/loader npm package (maintained by MiguelCastillo), specifically up to and including version 10..3. This post
CVE-2024-34949 - Critical SQL Injection in Likeshop Affects Order Management (Exploit and Analysis)
A new critical vulnerability, CVE-2024-34949, has been identified in Likeshop before version 2.5.7. This security flaw allows attackers to run arbitrary SQL commands
CVE-2024-35576 - Tenda AX1806 v1...1 Stack Overflow in IPTV Configuration — A Deep Dive
CVE-2024-35576 is a recently disclosed vulnerability affecting the Tenda AX1806 wireless router, specifically firmware version v1...1. This bug allows attackers to perform a stack-based
CVE-2024-34948 - Denial of Service in IK-Q300 3.7.10 – How Attackers Can Crash Your Device With Simple TCP Connections
On April 2024, a security vulnerability was disclosed affecting the IK-Q300 network device manufactured by Quanxun Huiju Network Technology (Beijing) Co., Ltd. Identified as CVE-2024-34948,
Episode
00:00:00
00:00:00