CVE CyberSecurity Database News (Page 86)

Apr 14, 2025 Exploit SQL

CVE-2025-3277 - Exploiting Integer Overflow in SQLite’s `concat_ws()` for 4GB Heap Buffer Overflow

CVE-2025-3277 is a newly discovered and critical vulnerability in SQLite, one of the world’s most widely deployed database engines. Specifically, the flaw lies in

Apr 14, 2025

CVE-2025-32931 - Exploiting Command Injection in DevDojo Voyager (1.4.-1.8.) – A Deep Dive

Recently, the security community has discovered a critical vulnerability in DevDojo Voyager — a popular Laravel admin package. Tracked as CVE-2025-32931, this flaw affects versions 1.

Apr 14, 2025 Exploit

CVE-2025-32910 - Crashing Libsoup – Deep Dive into the NULL Pointer Dereference in `soup_auth_digest_authenticate()`

Summary: CVE-2025-32910 uncovers a critical flaw in the popular libsoup library. The vulnerability lurks within the soup_auth_digest_authenticate() function, where a NULL pointer

Apr 14, 2025

CVE-2025-32914 - Out-of-Bounds Read in libsoup Allows Malicious HTTP Clients to Crash Servers

Date: June 2024 CVE: CVE-2025-32914 Component: libsoup Severity: Medium What is libsoup? libsoup is a popular HTTP client/server library for GNOME, often used in

Apr 14, 2025 API Exploit

CVE-2025-2424 - Mattermost Bookmark Metadata Disclosure Vulnerability Explained

*Published: June 2024* Introduction Recently, a security vulnerability identified as CVE-2025-2424 was discovered in the popular open-source team messaging platform, Mattermost. This issue affects versions