CVE-2024-35082 - SQL Injection in J2EEFAST v2.7. via findPage in SysOperLogMapper.xml
In June 2024, cybersecurity researchers reported a high-impact SQL injection vulnerability affecting the popular Java-based management framework, J2EEFAST, version 2.7.. Tracked as CVE-2024-35082, the
CVE-2024-35086 - Critical SQL Injection in J2EEFAST v2.7. via BpmTaskFromMapper.xml `findPage` Function
A critical SQL Injection vulnerability has been discovered in J2EEFAST version 2.7., tracked as CVE-2024-35086. The issue exists in the findPage function of BpmTaskFromMapper.
CVE-2024-5165 - Critical XSS Vulnerabilities in Eclipse Ditto’s User Interface
Eclipse Ditto is a widely used open-source framework that helps you build digital twins for IoT (Internet of Things) applications. But between versions 3.. and
CVE-2024-34274 - How OpenBD Cookie Deserialization Can Lead To Remote Code Execution
If you're running an old version of Open BlueDragon (OpenBD), specifically the build 20210306203917-6cbe797, you should be aware of a critical security issue:
CVE-2024-31879 - How A Deserialization Bug Lets Attackers Crash IBM i Systems (and Maybe More)
If you use IBM i, especially versions 7.2, 7.3, or 7.4, you want to pay attention to a new vulnerability: CVE-2024-31879. This
Episode
00:00:00
00:00:00