Exploit - CVE CyberSecurity Database News (Page 335)

CVE-2024-38828 - How @RequestBody byte[] in Spring MVC Can Enable a DoS Attack

Nov 18, 2024 Exploit Java Apache

CVE-2024-38828 - How @RequestBody byte[] in Spring MVC Can Enable a DoS Attack

In June 2024, a vulnerability tracked as CVE-2024-38828 was discovered in Spring Framework, one of Java’s most widely-used libraries for building web applications. This

CVE-2023-43091 - Code Injection Risk in GNOME Maps via Malicious service.json

Nov 17, 2024 Exploit

CVE-2023-43091 - Code Injection Risk in GNOME Maps via Malicious service.json

Earlier this year, security researchers discovered a serious vulnerability in GNOME Maps, a desktop application popular with many Linux users. Labeled as CVE-2023-43091, this flaw

CVE-2023-1419 - Script Injection in Debezium Database Connector – Vulnerability Explored

Nov 17, 2024 XSS API Exploit

CVE-2023-1419 - Script Injection in Debezium Database Connector – Vulnerability Explored

Modern databases power nearly every web application, and data sync tools like Debezium have become vital for keeping information up-to-date across platforms. But sometimes, these

CVE-2020-25720: Unintended Privilege Escalation in Samba due to Insecure Object Creation

Nov 17, 2024 Windows Exploit

CVE-2020-25720: Unintended Privilege Escalation in Samba due to Insecure Object Creation

A security vulnerability was recently discovered in Samba, a popular software suite that provides file and print services for various Windows-compatible clients. The vulnerability, labeled

Nov 16, 2024 RCE WordPress Exploit PHP

CVE-2024-8856 - Critical Arbitrary File Upload in WP Time Capsule's Backup and Staging Plugin for WordPress

Discovered: Early 2024 Affected Plugin: WP Time Capsule – Backup and Staging Plugin Slug: wp-time-capsule Vulnerable Versions: 1.22.21 and below Severity: Critical (Unauthenticated Remote