Poster - CVE CyberSecurity Database News (Page 827)

May 3, 2024 XSS WordPress

CVE-2024-4439 - Critical Stored XSS in WordPress Core via Avatar Block—Exploit Analysis and Guidance

Published: June 2024 Severity: High Affected WordPress Versions: Up to 6.5.2 Overview A new vulnerability tracked as CVE-2024-4439 has rocked the WordPress community.

May 3, 2024

CVE-2023-44443 - GIMP PSP File Parsing Integer Overflow Remote Code Execution Explained

GIMP, the popular free and open-source image editor, recently patched a serious security flaw known as CVE-2023-44443 (also tracked as ZDI-CAN-22096). This long-read post breaks

May 3, 2024 gimp

CVE-2023-44444 - GIMP PSP File Parsing Off-By-One RCE Vulnerability Explained

A newly disclosed security flaw, CVE-2023-44444, has put users of the popular image editing software GIMP at risk. This vulnerability allows attackers to execute their

May 3, 2024 Exploit gstreamer

CVE-2023-44446 - GStreamer MXF File Parsing Use-After-Free Leads to Remote Code Execution

CVE-2023-44446 is a critical security flaw in GStreamer’s MXF file parsing logic. The vulnerability enables remote attackers to execute arbitrary code on machines that

May 3, 2024 Windows Mac Exploit

CVE-2023-44441 - Remote Code Execution in GIMP via DDS File Parsing (Heap-based Buffer Overflow)

Summary: A critical vulnerability, tracked as CVE-2023-44441 (also ZDI-CAN-22093), was discovered in GIMP (GNU Image Manipulation Program). This bug allows attackers to execute arbitrary code