CVE-2024-21683 - Critical RCE in Confluence Data Center and Server Explained
Confluence, Atlassian’s popular collaboration software for enterprises, has been hit with yet another serious security threat: CVE-2024-21683, a Remote Code Execution (RCE) vulnerability. This
CVE-2024-34240 - Real World Exploitation of XSS in QDOCS Smart School 7.. Admin Panel
The education sector gets hit by security bugs like any other tech area. One recent vulnerability, CVE-2024-34240, stands out: QDOCS Smart School 7.. suffers from
CVE-2024-29651 - How Prototype Pollution in json-schema-ref-parser v11../11.1. Enables Arbitrary Code Execution
---
Introduction
In March 2024, a significant security flaw was discovered in the widely-used json-schema-ref-parser library. Tracked as CVE-2024-29651, this vulnerability affects versions 11.. and
CVE-2024-24294 - How Prototype Pollution in Blackprint Lets Attackers Run Code
Recently, a serious vulnerability has been discovered in Blackprint’s JavaScript engine, specifically in the package @blackprint/engine version .9.. Named CVE-2024-24294, this bug can
CVE-2023-47178 - Path Traversal and PHP Local File Inclusion in The Plus Addons for Elementor Pro
Date: June 2024
Severity: High (CVSS ~8.8)
Affected Plugin: The Plus Addons for Elementor Pro
Affected Versions: All versions up to and including 5.
Episode
00:00:00
00:00:00