CVE-2024-43160 - Unrestricted Upload of Dangerous Files in BerqWP (<=1.7.6) – Explained and Exploited
Date disclosed: June 2024
Affected Product: BerqWP WordPress Plugin
Versions Affected: Unknown through 1.7.6
Vulnerability Type: Unrestricted File Upload (leading to Code Injection)
CVE-2024-7589 - Another Signal Handler Vulnerability in OpenSSH for FreeBSD Leading to Remote Root Exploit
In June 2024, a new security vulnerability was discovered in the OpenSSH daemon (sshd) shipped with FreeBSD. Labeled CVE-2024-7589, this flaw closely resembles the celebrated
CVE-2024-42356 - Critical Remote Code Execution Bug in Shopware Twig Context – How the Vulnerability Works and How to Stay Safe
Shopware, a popular open-source e-commerce platform, was recently hit by a potentially dangerous vulnerability: CVE-2024-42356. This post will break down how the issue works, who’
CVE-2024-7256 - How Insufficient Data Validation in Dawn Engine on Google Chrome for Android Allowed Remote Code Execution
Last updated: June 2024
Severity: High
Affected Product: Google Chrome on Android (prior to 127..6533.88)
Component: Dawn (WebGPU)
Introduction
A newly disclosed security
CVE-2024-6327 - Remote Code Execution in Progress® Telerik® Report Server Exploited via Insecure Deserialization
A nasty bug has been found in Progress® Telerik® Report Server that lets attackers run their own code on a vulnerable server. This weakness, tracked
Episode
00:00:00
00:00:00