CVE-2024-22723 - Directory Traversal in Webtrees 2.1.18 — How Attackers Can Escape ‘media/’ and Access Sensitive Files
---
Overview
A new vulnerability, CVE-2024-22723, has been discovered in Webtrees 2.1.18, a popular open-source genealogy web application. This flaw lets attackers with
CVE-2024-26297 - Exploiting Critical Remote Command Execution in HPE ClearPass Policy Manager
CVE-2024-26297 is a newly disclosed critical vulnerability affecting the HPE Aruba ClearPass Policy Manager. If you run a ClearPass web management interface in your network,
CVE-2024-0763 - How Bad Folder Sanitization Lets Authenticated Users Delete Any Folder on Your Server
Summary:
CVE-2024-0763 is a serious vulnerability that allows any authenticated user to delete any folder (including all its contents) on a remote server. This happens
CVE-2024-26294 - Critical RCE in ClearPass Policy Manager Web Interface — Deep Dive, PoC, and Exploit Analysis
CVE-2024-26294 is a severe security vulnerability discovered in Aruba’s ClearPass Policy Manager, a popular AAA solution used in networks worldwide. The flaw lurks in
CVE-2024-24027 - SQL Injection in Likeshop Before 2.5.7—How It Works, Exploit Details, and How to Protect Yourself
CVE-2024-24027 is a major security concern for anyone running the Likeshop e-commerce platform before version 2.5.7. This vulnerability allows attackers to run arbitrary
Episode
00:00:00
00:00:00