CVE-2024-7978 - How a Chrome UI Gesture Bug Could Leak Cross-Origin Data – Exploit Demystified
A new security flaw, CVE-2024-7978, was patched by Google in Chrome version 128..6613.84. This vulnerability, rated as "Medium" by
CVE-2024-21690 - High Severity Reflected XSS and CSRF Vulnerability in Atlassian Confluence Data Center and Server
A serious security issue — CVE-2024-21690 — exists in several versions of Atlassian Confluence Data Center and Server. This vulnerability combines Reflected Cross-Site Scripting
CVE-2024-27185 - Exploiting Arbitrary Parameters in Pagination Links for Cache Poisoning Attacks
In early 2024, a major web vulnerability was identified under CVE-2024-27185, affecting websites that use certain Pagination libraries to split up long lists
CVE-2024-43160 - Unrestricted Upload of Dangerous Files in BerqWP (<=1.7.6) – Explained and Exploited
Date disclosed: June 2024
Affected Product: BerqWP WordPress Plugin
Versions Affected: Unknown through 1.7.6
Vulnerability Type: Unrestricted File Upload (leading to Code Injection)
CVE-2024-4207 - Critical XSS Flaw in GitLab XML File Viewer — Technical Details & Exploit Guide
A recently discovered vulnerability, CVE-2024-4207, exposes GitLab users to a dangerous Cross-Site Scripting (XSS) attack. This flaw affects a wide range of
Episode
00:00:00
00:00:00