CVE CyberSecurity Database News (Page 375)

Jan 14, 2025 API

CVE-2024-11734 - Keycloak Denial of Service via Malicious Security Header Injection

In early 2024, a significant vulnerability (CVE-2024-11734) was discovered in Keycloak, an open-source identity and access management solution widely used by organizations for single sign-on

Jan 14, 2025 WordPress API Google

CVE-2024-12365 - How a WordPress Caching Plugin Exposed Sensitive Data and Internal Networks

--- Overview In early 2024, a security vulnerability was disclosed for the popular W3 Total Cache plugin (often abbreviated as W3TC) for WordPress: CVE-2024-12365. This

Jan 14, 2025 Microsoft API Exploit

CVE-2025-23082 - Breaking Down the Veeam Backup for Microsoft Azure SSRF Vulnerability (Exclusive Deep Dive & Exploit Example)

In early 2025, security researchers uncovered a major vulnerability in Veeam Backup for Microsoft Azure, tracked as CVE-2025-23082. This bug abuses a classic web application

Jan 14, 2025 Exploit

CVE-2025-0070 - SAP NetWeaver Application Server for ABAP and ABAP Platform Authentication Bypass Vulnerability: Exploit Details and Prevention

SAP NetWeaver Application Server (AS) for ABAP and ABAP Platform is widely used for managing and deploying various SAP applications. Recently, a new vulnerability has

Jan 14, 2025

CVE-2025-0066 - Cracking SAP NetWeaver – A Simple Look at a High-Impact ABAP Info Leak

Published: 2024-07-01 What is CVE-2025-0066? A brand new vulnerability, CVE-2025-0066, has hit the SAP community in 2025. It exposes the SAP NetWeaver Application Server for