CVE-2024-35225 - Reflected XSS Vulnerability in Jupyter Server Proxy — How Attackers Can Hijack Your JupyterLab
A new security vulnerability has been discovered in the popular Jupyter Server Proxy extension, tracked as CVE-2024-35225. This bug exposes users to reflected cross-site scripting
CVE-2024-36773 - How a Simple XSS Exploit Threatens Monstra CMS 3..4
---
Overview
In June 2024, a new vulnerability marked as CVE-2024-36773 was found in Monstra CMS v3..4. This security hole lets hackers perform cross-site
CVE-2024-37383 - Exploiting XSS in Roundcube with SVG Animate – A Hands-On Guide
CVE-2024-37383 is a newly identified Cross-site Scripting (XSS) vulnerability affecting Roundcube Webmail up to version 1.5.7 and 1.6.x before 1.6.
CVE-2024-37031 - Stored XSS in Active Admin’s “Dynamic Form Legends” (Full Explanation with Exploit Example)
Quick summary:
A security bug in the popular Active Admin framework for Ruby on Rails (before version 3.2.2, and fixed also in 4.
CVE-2022-25037 - Uncovering an XSS Vulnerability in wanEditor v4.7.11’s Image Upload
If you use wanEditor — a popular rich text editor for web applications — it’s important to know about CVE-2022-25037, a vulnerability discovered in version 4.
Episode
00:00:00
00:00:00