CVE-2024-45299 - Exploiting Improper JSON Escaping in alf.io's Admin Customization
alf.io is a popular open source ticket reservation system, used by organizers for events like conferences, workshops, trade shows, and meetups. It's
CVE-2024-21690 - High Severity Reflected XSS and CSRF Vulnerability in Atlassian Confluence Data Center and Server
A serious security issue — CVE-2024-21690 — exists in several versions of Atlassian Confluence Data Center and Server. This vulnerability combines Reflected Cross-Site Scripting (XSS) and Cross-Site
CVE-2024-43407 - Reflected XSS Vulnerability in CKEditor 4’s GeSHi Plugin—What You Need To Know
---
Published: June 2024
Introduction
CKEditor 4 is one of the most popular open-source WYSIWYG HTML editors used by millions of web platforms. Recently, security
CVE-2024-27185 - Exploiting Arbitrary Parameters in Pagination Links for Cache Poisoning Attacks
In early 2024, a major web vulnerability was identified under CVE-2024-27185, affecting websites that use certain Pagination libraries to split up long lists of content.
CVE-2024-4207 - Critical XSS Flaw in GitLab XML File Viewer — Technical Details & Exploit Guide
A recently discovered vulnerability, CVE-2024-4207, exposes GitLab users to a dangerous Cross-Site Scripting (XSS) attack. This flaw affects a wide range of GitLab versions, from
Episode
00:00:00
00:00:00