CVE-2022-42745 - How XXE Bugs in CandidATS 3.. Allow Hackers to Steal Any File
CandidATS is an open source applicant tracking system, often used by businesses to manage resumes and job applications. In version 3.., though, a serious security
CVE-2022-35717 IBM InfoSphere Information Server could be exploited locally by sending a special request.
An attacker could exploit this vulnerability by sending a specially crafted request to the targeted system. An attacker would first have to send a crafted
CVE-2022-42750 - File Upload Flaw in CandidATS 3.. Lets Attackers Steal User Cookies
CandidATS is a popular open-source applicant tracking system used by many companies. In version 3.., it has a dangerous vulnerability known as CVE-2022-42750. This flaw
CVE-2022-43372 - Reflected XSS Vulnerability in Emlog Pro v1.7.1’s /admin/store.php – Explained
In late 2022, security researchers discovered and reported a reflected cross-site scripting (XSS) vulnerability in Emlog Pro v1.7.1, specifically at the /admin/store.
CVE-2020-22819: Exploring SQL Injection Vulnerability in MKCMS V6.2 through /ucenter/active.php Verify Parameter
In this long read, we will explore the SQL Injection vulnerability found in MKCMS V6.2 with the CVE Identifier CVE-2020-22819. SQL Injection is a
Episode
00:00:00
00:00:00