CVE-2022-38148 Silverstripe silverstripe/framework through 4.11 allows SQL Injection.
This could allow attackers to execute arbitrary SQL commands against the database or obtain sensitive information by injecting valid data into forms. This issue has
CVE-2022-45014 - How an XSS Flaw in WBCE CMS v1.5.4 Search Settings Puts Your Site at Risk
On November 24, 2022, a serious cross-site scripting (XSS) vulnerability was found in WBCE CMS version 1.5.4, affecting its Search Settings module. Tracked
CVE-2022-3861 - How a PHP Object Injection in Betheme WordPress Theme Allows Site Takeover
Security in WordPress themes is often overlooked, putting millions of websites at risk. A great example of this is CVE-2022-3861, a critical vulnerability discovered in
CVE-2022-1578 - How a Simple CSRF Flaw in “My wpdb” WordPress Plugin Could Let Attackers Run Arbitrary SQL Queries
WordPress is the world’s most popular content management system, but its security is only as strong as the plugins it runs. In April 2022,
CVE-2022-3762 - Critical File Download Vulnerability in Booster for WooCommerce Plugins - Exploit, Analysis, and Mitigation
If you run a WooCommerce store, you might be familiar with the Booster for WooCommerce plugin family — popular tools that extend and enhance e-commerce sites
Episode
00:00:00
00:00:00