API - CVE CyberSecurity Database News (Page 311)

CVE-2023-22045 - Understanding the Oracle Java SE and GraalVM Hotspot Confidentiality Vulnerability

Jul 18, 2023 API Exploit SOAP Java Oracle Oracle Corporation Java SE JDK and JRE

CVE-2023-22045 - Understanding the Oracle Java SE and GraalVM Hotspot Confidentiality Vulnerability

--- Introduction Security is critical for any software, especially when it comes to platforms as popular as Oracle Java SE and GraalVM. In July 2023,

Jul 18, 2023 API Exploit Java Oracle Oracle Corporation Java SE JDK and JRE

CVE-2023-22049 - Integrity Vulnerability in Oracle Java SE and GraalVM Libraries — Explained Simply

Security flaws in Java libraries are always serious business, especially since Java is so widely used for enterprise applications and cloud infrastructure. In June 2023,

Jul 18, 2023 WordPress API Exploit wproyal Royal Elementor Addons and Templates

CVE-2023-3709 - Unauthenticated API Key Disclosure in Royal Elementor Addons – Exploit Details & Mitigation

Discovered: June 13, 2023 Severity: High Affected Plugin: Royal Elementor Addons (WordPress) Affected Versions: ≤ 1.3.70 Vulnerable Feature: MailChimp Block Status: Patch available (Update

Jul 17, 2023 API Exploit JSON Web Token IceWhaleTech CasaOS

CVE-2023-37266 - How Attackers Could Take Over Your CasaOS Server Using Fake JWTs

CasaOS is a popular open-source personal cloud system, allowing users to manage files, apps, and even run containers from an easy-to-use web interface. But in

Jul 15, 2023 XSS API Exploit PHP Pnp4nagios

CVE-2023-38350 - Exploiting Stored XSS in PNP4Nagios Basket API (A Complete Guide)

CVE-2023-38350 is a critical vulnerability affecting PNP4Nagios up to commit 81ebfc5, including version .6.26. This bug allows attackers to perform stored Cross-site Scripting (XSS)