CVE-2023-39530 - How a CustomerMessage API Bug Let Attackers Delete Files on PrestaShop (With Exploit Example)
PrestaShop is a popular open source e-commerce solution trusted by thousands of businesses. If your online store runs PrestaShop versions before 8.1.1, your
CVE-2023-36298 - File Upload to Remote Code Execution in DedeCMS v5.7.109
DedeCMS is a popular open source content management system mostly used in Chinese-speaking regions. In its version 5.7.109, a critical security bug (CVE-2023-36298)
CVE-2023-26439 - Exploiting Insecure Input Handling in cacheservice API for SQL Injection and Data Exposure
---
Introduction
*CVE-2023-26439* is a security vulnerability discovered within the widely-used cacheservice API. This flaw allowed attackers on local or restricted networks to submit specially
CVE-2023-3500: Reflected XSS in GitLab CE/EE PlantUML Diagrams
A new security vulnerability has been identified in GitLab Community Edition (CE) and Enterprise Edition (EE), affecting various versions dating back to 10.. The vulnerability
CVE-2023-38491 - How a File Upload Vulnerability Impacted Kirby CMS – Details, Exploit, and Fixes
Kirby is a flexible, flat-file content management system (CMS) widely used for its simplicity and security. However, a recent high-severity vulnerability, CVE-2023-38491, put many Kirby-powered
Episode
00:00:00
00:00:00