CVE ID : CVE-2024-13140 Published : Jan. 5, 2025, 12:15 p.m. | 6 hours, 58 minutes ago Description : A vulnerability classified as problematic has been found in Emlog Pro up to 2.4.3. Affected is an unknown function of the file /admin/article.php?action=upload_cover of the component Cover Upload Handler. The manipulation of the argument image leads to cross…

TheCyberThrone Security Weekly Review – January 04, 2025 Welcome to TheCyberThrone cybersecurity week in review will be posted covering the important security happenings. This review is for the week ending Saturday, January 04, 2025.CVE-2024-56512 impacts A … Read more Published Date: Jan 05, 2025 (6 hours, 26 minutes ago) Vulnerabilities has been mentioned in this article. CVE-2024-11944…

CVE ID : CVE-2025-0219 Published : Jan. 5, 2025, 6:15 a.m. | 52 minutes ago Description : A vulnerability, which was classified as problematic, has been found in Trimble SPS851 488.01. Affected by this issue is some unknown functionality of the component Receiver Status Identity Tab. The manipulation of the argument System Name leads to cross…

CVE ID : CVE-2024-13131 Published : Jan. 5, 2025, 3:15 a.m. | 3 hours, 52 minutes ago Description : A vulnerability classified as problematic has been found in Dahua IPC-HFW1200S, IPC-HFW2300R-Z, IPC-HFW5220E-Z and IPC-HDW1200S up to 20241222. This affects an unknown part of the file /web_caps/webCapsConfig of the component Web Interface. The manipulation leads to information disclosure.…

CVE ID : CVE-2024-13132 Published : Jan. 5, 2025, 5:15 a.m. | 1 hour, 52 minutes ago Description : A vulnerability classified as problematic was found in Emlog Pro up to 2.4.3. This vulnerability affects unknown code of the file /admin/article.php of the component Subpage Handler. The manipulation leads to cross site scripting. The attack can be…

CVE ID : CVE-2024-13133 Published : Jan. 5, 2025, 5:15 a.m. | 1 hour, 52 minutes ago Description : A vulnerability, which was classified as critical, has been found in ZeroWdd studentmanager 1.0. This issue affects the function addStudent/editStudent of the file src/main/Java/com/wdd/studentmanager/controller/StudentController. java. The manipulation of the argument file leads to unrestricted upload. The attack may…

CVE ID : CVE-2024-13130 Published : Jan. 5, 2025, 1:15 a.m. | 5 hours, 52 minutes ago Description : A vulnerability was found in Dahua IPC-HFW1200S, IPC-HFW2300R-Z, IPC-HFW5220E-Z and IPC-HDW1200S up to 20241222. It has been rated as problematic. Affected by this issue is some unknown functionality of the file ../mtd/Config/Sha1Account1 of the component Web Interface. The…

Nuclei flaw lets malicious templates bypass signature verification A now-fixed vulnerability in the open-source vulnerability scanner Nuclei could potentially allow attackers to bypass signature verification while sneaking malicious code into templates that execute o … Read more Published Date: Jan 04, 2025 (8 hours, 8 minutes ago) Vulnerabilities has been mentioned in this article. CVE-2024-43405 Go to Source

CVE-2024-10957 Exposes Over 3 Million WordPress Sites to Unauthenticated PHP Object Injection Exploits A newly discovered vulnerability in the UpdraftPlus Backup & Migration Plugin, used by over 3 million WordPress websites globally, has raised significant security concerns. Identified as CVE-2024-1095 … Read more Published Date: Jan 05, 2025 (5 hours, 37 minutes ago) Vulnerabilities has been mentioned…

Nuclei flaw bypasses template signature checks to execute commands A now-fixed vulnerability in the open-source vulnerability scanner Nuclei could potentially allow attackers to bypass signature verification while sneaking malicious code into templates that execute o … Read more Published Date: Jan 04, 2025 (8 hours, 8 minutes ago) Vulnerabilities has been mentioned in this article. CVE-2024-43405 Go to…