CVE CyberSecurity Database News

Apr 1, 2025 Apache

CVE-2024-56325 - Authentication Bypass Issue: A Closer Look at Exploiting and Protecting Pinot

Security vulnerabilities are often encountered in software development, and the Common Vulnerabilities and Exposures (CVE) system provides a reference for these vulnerabilities. In this post,

Apr 1, 2025 Exploit Apache

CVE-2025-30065 - Critical Vulnerability Discovered in Schema Parsing of parquet-avro Module in Apache Parquet

A new critical vulnerability, CVE-2025-30065, has been discovered in the schema parsing of the parquet-avro module of Apache Parquet, which affects version 1.15. and

Mar 31, 2025 Exploit PHP

Uncovering CVE-2025-31103: Untrusted Data Deserialization Vulnerability in a-blog cms and Its Exploitation

A recent vulnerability, dubbed CVE-2025-31103, has been discovered in the popular content management system (CMS) named a-blog cms. The vulnerability lies in the untrusted data

Mar 31, 2025 Exploit

CVE-2025-1268: Exploring an Out-of-Bounds Vulnerability in EMF Recode Processing of Various Generic Plus Printer Drivers

A critical out-of-bounds vulnerability (CVE-2025-1268) has been identified in the EMF Recode processing of multiple Generic Plus Printer Drivers, including the PCL6, UFR II, LIPS4,

Mar 30, 2025 Exploit PHP

CVE-2025-1861 - PHP Vulnerability in HTTP Redirect Parsing Due to Limited Location Buffer

This blog post discusses a vulnerability discovered in various PHP versions, specifically 8.1.*, 8.2.*, 8.3.*, and 8.4.*. The issue is due