PHP - CVE CyberSecurity Database News (Page 64)

Jun 6, 2024 Exploit SQL PHP

CVE-2024-36823 - Weak Encryption in Ninja Core v7.. Exposes Sensitive Data

In June 2024, security researchers identified a new vulnerability, CVE-2024-36823, in the popular web application framework, Ninja Core, version 7... This post will break down

Jun 6, 2024 Exploit PHP

CVE-2024-36774 - Exploiting Arbitrary File Upload in Monstra CMS v3..4

In June 2024, security researchers revealed a major vulnerability—CVE-2024-36774—in Monstra CMS version 3..4. This flaw lets attackers bypass security checks and upload

Jun 6, 2024 Exploit SQL PHP

CVE-2024-36779 - SQL Injection in Sourcecodester Stock Management System v1. (editCategories.php)

A critical SQL Injection vulnerability—CVE-2024-36779—has been identified in the popular open-source project, Sourcecodester Stock Management System v1.. The flaw sits in the editCategories.

Jun 4, 2024 WordPress Exploit PHP

CVE-2024-25600 - Code Injection in Bricks Builder – What You Need to Know (Exclusive Deep Dive)

In February 2024, security researchers discovered a critical vulnerability in Bricks Builder, a popular WordPress page builder plugin. This bug, tracked as CVE-2024-25600, is a

Jun 4, 2024 WordPress Apache PHP

CVE-2023-48753 - Authentication Bypass in 10up Restricted Site Access Plugin – Exploit Explained

Summary: CVE-2023-48753 is a critical vulnerability in the “Restricted Site Access” WordPress plugin by 10up. This flaw, termed as “Authentication Bypass by Spoofing,” lets attackers