CVE-2024-27455 - How Bentley ALIM Web Leaked Session Tokens on File Download (and How it Was Fixed)
A serious web security bug, tracked as CVE-2024-27455, was found in Bentley ALIM Web, a software used by many organizations to manage asset lifecycle information.
CVE-2024-27454 - Exploiting orjson’s Recursion Weakness in Python Before 3.9.15
When using Python for fast JSON processing, the orjson library is a popular, high-performance choice. But recently, researchers uncovered a critical flaw, CVE-2024-27454, in orjson
CVE-2024-1885 - Remote Code Execution in LG Signage webOS — What You Need to Know
In early 2024, a critical vulnerability (CVE-2024-1885) was discovered in certain versions of LG Signage digital displays running webOS. This flaw allows attackers on the
CVE-2024-1436 - Sensitive Information Leak in Wiloke WooCommerce Coupon Popup, SmartBar, Slide In (MyShopKit) Plugin - Details, Exploit, and Protection
If you run a WooCommerce shop on WordPress, chances are you love giving your shoppers a little nudge — maybe in the form of popups, smart
CVE-2024-0798 - How Default Users Can Delete Any Folder or File in Your System (With Exploit Code)
CVE-2024-0798 exposes a major security hole: users with the default, supposedly limited, role can actually delete any folder or document via special HTTP requests. This
Episode
00:00:00
00:00:00