CVE-2024-8146 - Critical SQL Injection in Pharmacy Management System 1. Exploited in the Wild
A new critical vulnerability, tracked as CVE-2024-8146, has been discovered in Code-Projects Pharmacy Management System 1. which puts pharmacy data and user information at high
CVE-2024-7651 - How Attackers Can Steal Data From WordPress Sites Using The App Builder Plugin (Full Exploit Analysis)
In June 2024, a new WordPress vulnerability called CVE-2024-7651 was disclosed affecting The App Builder – Create Native Android & iOS Apps On The Flight plugin.
CVE-2024-43286 - SQL Injection Vulnerability in Squirrly SEO Plugin – Full Analysis and Exploit
The WordPress plugin ecosystem is often a double-edged sword: it enables powerful site features, but sometimes introduces security risks. Recently, a serious vulnerability surfaced in
CVE-2024-7348 - Exploiting TOCTOU Race in PostgreSQL pg_dump for Superuser Privilege Escalation
CVE-2024-7348 is a recently disclosed vulnerability that targets PostgreSQL databases, specifically leveraging a Time-of-check Time-of-use (TOCTOU) race condition in the pg_dump utility. Attackers who
CVE-2024-41248 - How Broken Access Control Lets Attackers Add Subjects in Kashipara Responsive School Management System v3.2.
In June 2024, a new vulnerability was found in a popular open-source web application called Kashipara Responsive School Management System (SMSA) version 3.2.. This
Episode
00:00:00
00:00:00