RCE - CVE CyberSecurity Database News (Page 20)

Feb 21, 2025 RCE API Exploit

CVE-2025-1538 - Critical Heap Overflow in D-Link DAP-132’s set_ws_action Function Enables Remote Exploitation

Summary: A critical vulnerability, tagged as CVE-2025-1538, was discovered in D-Link DAP-132 firmware version 1.00. The flaw resides in the set_ws_action function

Feb 20, 2025 RCE

CVE-2025-24893 - XWiki 'SolrSearch' Remote Code Execution Vulnerability Exploited by Unauthenticated Users

Recently, a critical vulnerability—CVE-2025-24893—was discovered in the XWiki Platform, a powerful and widely-used open-source wiki engine. What makes this issue especially severe is

Feb 20, 2025 RCE API

CVE-2025-0868 - Remote Code Execution in DocsGPT via /api/remote and Unsafe JSON Parsing

Summary: A critical vulnerability (CVE-2025-0868) has been found in popular open-source documentation assistant DocsGPT, versions .8.1 through .12.. If you're running an

Feb 20, 2025 RCE Windows Microsoft API Exploit

CVE-2025-27218 - Critical Remote Code Execution in Sitecore XM/XP 10.4 via Insecure Deserialization

Sitecore is a popular enterprise-grade content management system used by organizations worldwide. In March 2025, a serious vulnerability was identified in Sitecore Experience Manager (XM)

Feb 18, 2025 RCE CSRF Exploit

CVE-2025-25891 - Buffer Overflow in D-Link DSL-3782 v1.01 — Exploit Details and Analysis

Recently, security researchers uncovered CVE-2025-25891, a critical buffer overflow vulnerability in the D-Link DSL-3782 wireless router, firmware v1.01. The flaw is tied to the