CVE-2022-22721 LimitXMLRequestBody can cause an integer overflow, which later causes out of bounds writes.
We have fixed the issue in Apache by setting the request limit to a lower value.
Apache HTTP Server 2.4.53 has been released
CVE-2022-24734 MyBB is a free and open source forum software
In versions prior to 1.8.30, MyBB's Settings module allows adding settings of type php, with PHP code executed on Change Settings
CVE-2022-24349 - How Reflected XSS Threatens Zabbix Users—from Theory to Practical Exploit
If you use Zabbix, the popular open-source monitoring software, you should know about CVE-2022-24349. This vulnerability gives an authenticated attacker the power to craft a
CVE-2022-0848 - How OS Command Injection in part-db/part-db (Before v.5.11) Opened Dangerous Backdoors
Did you know a small bug in a web app could let an attacker run any command they want on your server? That’s exactly
CVE-2022-24711 - CodeIgniter4 Improper Input Validation Leads to CLI Route Execution via HTTP
CodeIgniter is a popular PHP web framework, trusted by developers worldwide for building fast and secure web applications. But even big projects have their vulnerabilities.
Episode
00:00:00
00:00:00