CVE-2023-27112 - SQL Injection in pearProjectApi v2.8.10 (project.php `projectCode` Parameter) Explored
In early 2023, a serious vulnerability was discovered in the popular open-source tool pearProjectApi, version 2.8.10. This post dives into CVE-2023-27112, an SQL
CVE-2023-27113 - SQL Injection in pearProjectApi v2.8.10 via organizationCode (project.php) – A Deep Dive
In early 2023, a critical SQL injection vulnerability was discovered in the popular PHP project management tool, pearProjectApi (version 2.8.10). Tracked as CVE-2023-27113,
CVE-2025-24011 - Information Disclosure in Umbraco CMS UserExistance via API Timing Attack
In June 2025, a new vulnerability has been disclosed for the Umbraco .NET content management system (CMS), tracked as CVE-2025-24011. This issue affects all releases
CVE-2025-22710 - Blind SQL Injection in StoreApps Smart Manager (Up to v8.52.) – Deep Dive and Exploit Example
Published: June 2024
CVE: CVE-2025-22710
Affected Product: StoreApps Smart Manager (for WooCommerce)
Vulnerable Versions: All versions up to and including 8.52.
Vulnerability Type: Blind
CVE-2025-0585 - a+HRD by aEnrich Technology - Unauthenticated SQL Injection Explained
In January 2025, a new critical vulnerability—CVE-2025-0585—was disclosed in the a+HRD human resource management system developed by aEnrich Technology. This flaw is
Episode
00:00:00
00:00:00