CVE-2024-8116 - Exploiting GitLab GraphQL to Leak Branch Names Without Authorization
A new security issue, CVE-2024-8116, was discovered in multiple versions of GitLab Community Edition (CE) and Enterprise Edition (EE). This vulnerability lets unauthorized users use
CVE-2023-40003 - Exploiting Missing Authorization in weDevs WP Project Manager (n/a – 2.6.7)
WordPress plugins are awesome for building and managing your website, but sometimes small mistakes can lead to big security problems. One such problem was found
CVE-2023-40334 - How Missing Authorization in HUSKY Opens Up Security Risks (With Exploit Example)
The open-source project HUSKY by realmag777 is a popular tool used in various web applications for plugin management and automation. Keeping an eye on its
CVE-2023-33215 - How a Missing Authorization Vulnerability in Tagbox Taggbox Lets Attackers Bypass Access Controls
Date: June 2024
Author: SecureCode Insights
In May 2023, a serious security flaw (CVE-2023-33215) was discovered in Taggbox, also known as Tagbox Taggbox, a popular
CVE-2024-11275 - Critical Vulnerability in WP Timetics Plugin Lets Customers Delete Any Users – Full Analysis & Exploit Demo
Discovered: Early 2024
Severity: High
Affected Plugin: WP Timetics
Vulnerable Versions: ≤ 1..27
Plugin Purpose: Appointment booking & scheduling with AI features
Bug Type: Broken
Episode
00:00:00
00:00:00