CVE-2024-36465 - How Regular Zabbix Users Can Exploit SQL Injection via groupBy Parameter
In June 2024, a severe security vulnerability—CVE-2024-36465—was publicly disclosed for Zabbix, a popular open-source monitoring tool used to track the status of servers
CVE-2025-2951 - Critical SQL Injection Vulnerability in Bluestar Micro Mall 1. (`/api/data.php?Search=...`) - Technical Overview and Exploit Details
Last updated: June 2024
Author: SecurityExplained
Bluestar Micro Mall is a PHP-based e-commerce solution gaining traction with small online retailers. Recently, a severe security vulnerability
CVE-2025-2927 - Critical SQL Injection in ESAFENET CDG 5.6.3.154.205 via /parameter/getFileTypeList.jsp
Recently, a dangerous security flaw – CVE-2025-2927 – was discovered in the ESAFENET CDG version 5.6.3.154.205. This vulnerability is critical and allows remote
CVE-2025-30524 - SQL Injection in Origincode Product Catalog (≤1..4) – How Attackers Can Steal Your Data
In June 2025, a serious security vulnerability (CVE-2025-30524) was discovered in Origincode's Product Catalog plugin, versions up to and including 1..4. If
CVE-2025-2186 - How a WooCommerce Plugin Left Stores Wide Open with a Simple SQL Injection
A high-risk vulnerability, CVE-2025-2186, was identified in the popular FunnelKit plugin for WordPress, specifically in the Recover WooCommerce Cart Abandonment, Newsletter, Email Marketing, Marketing Automation
Episode
00:00:00
00:00:00