CVE-2023-34960: Command Injection Vulnerability in Chamilo's wsConvertPpt Component
Chamilo, a popular open-source Learning Management System (LMS), has been found to have a critical command injection vulnerability in its wsConvertPpt component. This vulnerability, identified
CVE-2023-35078 - Critical Vulnerability in Ivanti Endpoint Manager Mobile (EPMM) Authentication Bypass
Ivanti Endpoint Manager Mobile (EPMM), previously known as MobileIron Core, is a popular mobile device management (MDM) solution that helps organizations manage and secure their
CVE-2023-3247: An In-Depth Look into the PHP SOAP HTTP Digest Authentication Vulnerability
A recently discovered vulnerability, dubbed CVE-2023-3247, has been found in PHP versions 8..* before 8..29, 8.1.* before 8.1.20, and 8.2.
CVE-2022-42734: Exploiting Improper Write Access Control in syngo Dynamics Application Server
A recently discovered vulnerability (CVE-2022-42734) affects the syngo Dynamics application server, a popular product used in medical imaging and reporting. In this blog post, we
CVE-2022-45378 Apache SOAP's RPCRouterServlet has no authentication, which gives attackers the ability to invoke methods on the classpath.
Due to the fact that Apache SOAP versions 1.2, 1.3 and 1.4 are no longer supported, this vulnerability poses a critical risk
Episode
00:00:00
00:00:00