CVE-2023-39365 - SQL Injection in Cacti - A Deep Dive Into the Flaw and How Hackers Exploit It
Cacti is one of the most popular open-source network monitoring and fault management tools out there. System admins rely on it to visualize and keep
CVE-2023-39359 - Privilege Escalation & Remote Code Execution in Cacti via Authenticated SQL Injection
Cacti is a widely-used open source monitoring tool for network and server infrastructure. In November 2023, a critical security vulnerability, CVE-2023-39359, was discovered in Cacti’
CVE-2023-4740: Critical Vulnerability Discovered in IBOS OA 4.5.5 - SQL Injection Exploit in Delete Draft Handler
A critical vulnerability, CVE-2023-4740, has been identified in IBOS OA 4.5.5, which is an Office Automation platform typically used by businesses to streamline
CVE-2023-40771 - SQL Injection in DataEase v1.18.9 – How Attackers Steal Your Database
If you use DataEase, pay close attention. The SQL injection vulnerability tagged as CVE-2023-40771 affects DataEase version 1.18.9. In this post, I’ll
CVE-2023-41640 - Exploiting Improper Error Handling in GruppoSCAI RealGimm 1.1.37p38 to Leak Sensitive Information
CVE-2023-41640 is a recently discovered vulnerability affecting GruppoSCAI RealGimm version 1.1.37p38. This flaw resides in how the application handles errors within the ErroreNonGestito.
Episode
00:00:00
00:00:00