CVE-2024-54151 - Critical Directus WebSockets Vulnerability—How Unauthenticated Users Can Become Admins
Directus is a popular open-source platform that turns any SQL database into a powerful real-time API and user-friendly admin dashboard. With Directus, teams can manage
CVE-2024-54147 - How Altair GraphQL Client Let Attackers Read All Your Data on Public WiFi
Altair GraphQL Client for Desktop didn’t verify HTTPS certificates before version 8..5. This means that if you used it on public WiFi or
CVE-2024-54920 - SQL Injection in kashipara E-learning Management System v1. (teacher_signup.php) – Exploit Details & Walkthrough
A recently discovered vulnerability, CVE-2024-54920, has made headlines in the security community. This SQL Injection flaw was found in the /teacher_signup.php file of
CVE-2024-49600 - How a Vulnerability in Dell Power Manager Could Let Attackers Take Over Your PC
If you are running Dell Power Manager (DPM) on your Windows laptop or desktop, you need to pay serious attention to this. In May 2024,
CVE-2024-53947 - New Wave of SQL Injection in Apache Superset—Fresh Functions, Fresh Danger
Summary:
A fresh SQL Injection vulnerability—CVE-2024-53947—has just hit Apache Superset, affecting all versions below 4.1.. This new issue expands on CVE-2024-39887 and
Episode
00:00:00
00:00:00