CVE-2024-1136 - How Attackers Bypass "Maintenance Mode" in Popular WordPress Plugin
Published: June 2024
Severity: Medium-High (CVSS: 6.5)
When a website goes under construction or needs a quick break, admins turn to plugins like “Coming
CVE-2024-22723 - Directory Traversal in Webtrees 2.1.18 — How Attackers Can Escape ‘media/’ and Access Sensitive Files
---
Overview
A new vulnerability, CVE-2024-22723, has been discovered in Webtrees 2.1.18, a popular open-source genealogy web application. This flaw lets attackers with
CVE-2024-26297 - Exploiting Critical Remote Command Execution in HPE ClearPass Policy Manager
CVE-2024-26297 is a newly disclosed critical vulnerability affecting the HPE Aruba ClearPass Policy Manager. If you run a ClearPass web management interface in your network,
CVE-2024-0763 - How Bad Folder Sanitization Lets Authenticated Users Delete Any Folder on Your Server
Summary:
CVE-2024-0763 is a serious vulnerability that allows any authenticated user to delete any folder (including all its contents) on a remote server. This happens
CVE-2024-26294 - Critical RCE in ClearPass Policy Manager Web Interface — Deep Dive, PoC, and Exploit Analysis
CVE-2024-26294 is a severe security vulnerability discovered in Aruba’s ClearPass Policy Manager, a popular AAA solution used in networks worldwide. The flaw lurks in
Episode
00:00:00
00:00:00