Exploit - CVE CyberSecurity Database News (Page 141)

Feb 13, 2025 API Exploit Java

CVE-2025-1247 - How a Quarkus REST Field Injection Flaw Puts Your Java APIs at Risk

If you’re building Java APIs with Quarkus REST, you want performance and reliability. But the recent vulnerability CVE-2025-1247 exposes critical risks—allowing attackers to

Feb 13, 2025 Exploit SQL

CVE-2025-1094 - Exploiting SQL Injection in PostgreSQL libpq Escape Functions

PostgreSQL is famous for being a secure and reliable open-source database. But recently, a vulnerability surfaced, affecting the libpq client library and several PostgreSQL command-line

Feb 13, 2025 Exploit

CVE-2025-21700 - Privilege Escalation in Linux Kernel Traffic Control (tc) via Qdisc UAF

A serious vulnerability (CVE-2025-21700) in the Linux kernel's traffic control (tc) queueing discipline ("qdisc") system was patched. The bug allowed attackers

Feb 13, 2025 API Exploit

CVE-2024-7102 - Triggering Pipelines as Another User in GitLab (Root Cause, Exploit, and Secure Your DevOps)

Published: June 2024 Author: [Your Name] What is CVE-2024-7102? A major security issue—CVE-2024-7102—has hit GitLab Community Edition (CE) and Enterprise Edition (EE), impacting

Feb 12, 2025 Exploit gRPC

CVE-2025-0110: Command Injection Vulnerability in Palo Alto Networks PAN-OS OpenConfig plugin

The Palo Alto Networks PAN-OS OpenConfig plugin is found to have a command injection vulnerability (CVE-2025-0110) that allows authenticated administrators to bypass system restrictions and