CVE-2024-22723 - Directory Traversal in Webtrees 2.1.18 — How Attackers Can Escape ‘media/’ and Access Sensitive Files
---
Overview
A new vulnerability, CVE-2024-22723, has been discovered in Webtrees 2.1.18, a popular open-source genealogy web application. This flaw lets attackers with
CVE-2024-27099 - Double Free in uAMQP Exposes Azure Cloud Services to RCE — Exploit Explained
On March 6, 2024, a significant vulnerability was disclosed for the uAMQP C library, which is widely used to enable communication with Azure Cloud Services
CVE-2021-46962 - Resource Leak in Linux Kernel’s `uniphier-sd` Remove Function (Explained)
The Linux kernel is the backbone of many systems, from servers to embedded devices. Keeping its code tidy and secure is vital. One recent fix
CVE-2024-1921 - Critical Unrestricted File Upload Vulnerability in osuuu LightPicture – Exploit, Details, and Mitigation
On March 26, 2024, a critical vulnerability identified as CVE-2024-1921 (also tracked as VDB-254856) was discovered in the *osuuu LightPicture* image management software, affecting versions
CVE-2024-22917 - Critical SQL Injection in Dynamic Lab Management System Project v1. (PHP) – Explained with Code, Exploit, and Fix
Date disclosed: June 2024
Vulnerability type: SQL Injection (Remote Code Execution)
Project affected: Dynamic Lab Management System Project v1. (PHP)
CVSS Score: 9.8 (Critical)
Episode
00:00:00
00:00:00