CVE-2021-43258 - Remote Code Execution in ChurchInfo 1.3. – Simple Exploitation via CartView.php
In November 2021, a dangerous vulnerability was found and published (reference) in ChurchInfo version 1.3.. This open-source church management app allows users to manage
CVE-2022-23740 - How a Command Injection Bug in GitHub Enterprise Server Opened the Door to Remote Code Execution
In early 2022, cybersecurity researchers discovered a critical vulnerability in GitHub Enterprise Server (GHES). Identified as CVE-2022-23740, this flaw made it possible for attackers to
CVE-2022-41922 - yiisoft/yii (Yii 1.x) Remote Code Execution via unserialize() – Exploit Details and Fix
Summary:
A serious security flaw, CVE-2022-41922, was identified in the popular PHP framework Yii 1.x (yiisoft/yii). If your application uses Yii before version
CVE-2022-44258 - Exploiting Buffer Overflow in TOTOLINK LR350 (Firmware V9.3.5u.6369_B20220309) via setTracerouteCfg
In late 2022, researchers identified a buffer overflow vulnerability in TOTOLINK’s LR350 router, specifically in firmware version V9.3.5u.6369_B20220309. Labeled CVE-2022-44258,
CVE-2022-44256 - Exploiting Buffer Overflow in TOTOLINK LR350 via lang Parameter
When you see stories about routers being hacked, the cause is often some obscure bug buried in their web interface code. TOTOLINK LR350—a budget
Episode
00:00:00
00:00:00