PHP - CVE CyberSecurity Database News (Page 4)

Mar 14, 2025 Exploit PHP

CVE-2023-33300 - Fortinet FortiNAC Command Injection Vulnerability in Inter-Server Communication Port: Exploit Details and Analysis

A recently identified vulnerability in Fortinet FortiNAC, CVE-2023-33300, has been discovered that concerns an improper neutralization of special elements used in commands, commonly known as

Mar 11, 2025 Windows Microsoft Exploit PHP

CVE-2025-24071 - Exposure of Sensitive Information in Windows File Explorer Allows Unauthorized Attacker to Perform Spoofing Over a Network

A newly discovered vulnerability with the identifier CVE-2025-24071 involves the exposure of sensitive information in the Windows File Explorer application. This flaw enables unauthorized attackers

Mar 11, 2025 WordPress Exploit PHP

CVE-2025-1661 - Local File Inclusion Vulnerability in HUSKY - Products Filter Professional for WooCommerce Plugin in WordPress

A security vulnerability has been discovered in the HUSKY - Products Filter Professional for WooCommerce plugin for WordPress. The plugin, designed to enhance the filtering

Mar 10, 2025 Apache PHP

CVE-2025-24813 - Path Equivalence 'file.Name' (Internal Dot) Vulnerability in Apache Tomcat (Remote Code Execution, Information Disclosure, Malicious Content Injection)

A critical vulnerability was discovered in Apache Tomcat, allowing for remote code execution, information disclosure, and malicious content injection via the write-enabled Default Servlet. This

Mar 4, 2025 API Exploit PHP

CVE-2024-47262: Axis VAPIX API Race Condition Vulnerability Leads to Web Interface Lockdown

Dzmitry Lukyanenka, an esteemed member of the AXIS OS Bug Bounty Program, recently discovered a vulnerability within the VAPIX API param.cgi of Axis devices