CVE-2024-35560 - CSRF Vulnerability in idccms v1.35 – Full Exploit & Analysis
Date Reported: June 2024
Severity: High
Vulnerability Type: Cross-Site Request Forgery (CSRF)
Affected Software: idccms v1.35
Vulnerable Component: /admin/ca_deal.php?mudi=del&
CVE-2024-35554 - Exploiting CSRF in idccms v1.35's NewsWeb Delete Endpoint
Summary:
On June 2024, a Cross-Site Request Forgery (CSRF) vulnerability was found in idccms v1.35. Bad actors can exploit it to make unwanted changes
CVE-2024-34240 - Real World Exploitation of XSS in QDOCS Smart School 7.. Admin Panel
The education sector gets hit by security bugs like any other tech area. One recent vulnerability, CVE-2024-34240, stands out: QDOCS Smart School 7.. suffers from
CVE-2024-34193 - Path Traversal Vulnerability in smanga 3.2.7 Lets Attackers Read Any File
A new security issue has been discovered in smanga version 3.2.7, a popular manga CMS. This vulnerability, registered as CVE-2024-34193, allows attackers to
CVE-2024-31879 - How A Deserialization Bug Lets Attackers Crash IBM i Systems (and Maybe More)
If you use IBM i, especially versions 7.2, 7.3, or 7.4, you want to pay attention to a new vulnerability: CVE-2024-31879. This
Episode
00:00:00
00:00:00