CVE-2023-27113 - SQL Injection in pearProjectApi v2.8.10 via organizationCode (project.php) – A Deep Dive
In early 2023, a critical SQL injection vulnerability was discovered in the popular PHP project management tool, pearProjectApi (version 2.8.10). Tracked as CVE-2023-27113,
CVE-2025-24011 - Information Disclosure in Umbraco CMS UserExistance via API Timing Attack
In June 2025, a new vulnerability has been disclosed for the Umbraco .NET content management system (CMS), tracked as CVE-2025-24011. This issue affects all releases
CVE-2025-22710 - Blind SQL Injection in StoreApps Smart Manager (Up to v8.52.) – Deep Dive and Exploit Example
Published: June 2024
CVE: CVE-2025-22710
Affected Product: StoreApps Smart Manager (for WooCommerce)
Vulnerable Versions: All versions up to and including 8.52.
Vulnerability Type: Blind
CVE-2025-0585 - a+HRD by aEnrich Technology - Unauthenticated SQL Injection Explained
In January 2025, a new critical vulnerability—CVE-2025-0585—was disclosed in the a+HRD human resource management system developed by aEnrich Technology. This flaw is
CVE-2025-0580 - Critical Vulnerability in Shiprocket Module 3 on OpenCart with Exploit Details and Remediation Steps
A critical vulnerability, identified as CVE-2025-0580, has been discovered in the Shiprocket Module 3 running on the popular e-commerce platform, OpenCart. This vulnerability allows an
Episode
00:00:00
00:00:00