-
CVE-2025-22145 – Carbon PHP DateTime Remote File Include Vulnerability
CVE ID : CVE-2025-22145 Published : Jan. 8, 2025, 9:15 p.m. | 29 minutes ago Description : Carbon is an international PHP extension for DateTime. Application passing unsanitized user input to Carbon::setLocale are at risk of arbitrary file include, if the application allows users to upload files with .php extension in an folder that allows include…
-
CVE-2024-13190 – ZeroWdd Myblog Xml Injection
CVE ID : CVE-2024-13190 Published : Jan. 8, 2025, 9:15 p.m. | 29 minutes ago Description : A vulnerability classified as critical was found in ZeroWdd myblog 1.0. This vulnerability affects unknown code of the file src/main/resources/mapper/BlogMapper.xml. The manipulation of the argument findBlogList/getTotalBlogs leads to xml injection. The attack can be initiated remotely. The exploit has…
-
CVE-2024-13189 – ZeroWdd MyBlog Remote File Permission Bypass Vulnerability
CVE ID : CVE-2024-13189 Published : Jan. 8, 2025, 8:15 p.m. | 1 hour, 28 minutes ago Description : A vulnerability classified as critical has been found in ZeroWdd myblog 1.0. This affects an unknown part of the file src/main/java/com/wdd/myblog/config/MyBlogMvcConfig.java. The manipulation leads to permission issues. It is possible to initiate the attack remotely. The exploit has…
-
CVE-2024-51442 – Minidlna Command Injection Vulnerability
CVE ID : CVE-2024-51442 Published : Jan. 8, 2025, 6:15 p.m. | 3 hours, 28 minutes ago Description : Command Injection in Minidlna version v1.3.3 and before allows an attacker to execute arbitrary OS commands via a specially crafted minidlna.conf configuration file. Severity: 8.8 | HIGH Visit the link for more details, such as CVSS details, affected…
-
CVE-2025-22137 – Pingvin Share File Traversal
CVE ID : CVE-2025-22137 Published : Jan. 8, 2025, 4:15 p.m. | 5 hours, 28 minutes ago Description : Pingvin Share is a self-hosted file sharing platform and an alternative for WeTransfer. This vulnerability allows an authenticated or unauthenticated (if anonymous shares are allowed) user to overwrite arbitrary files on the server, including sensitive system files, via…
-
Midori Browser 11.5 Added Headless Mode & New App Icon
Midori web browser announced new 11.5 release recently with some exciting new features. Midori was a popular lightweight web browser that was default in elementary OS and Bodhi Linux. It’s now a free open-source Firefox derived browser developed by Astian Foundation, and licensed under the Mozilla Public License (MPL). The browser released new 11.5 recently,…
-
Downloading the same file 102+ times
Have YOU ever tried downloading the same file 102+ times in your favorite browser? Do you know what happens on the 102nd time? 🙃 I do. The answer is … it depends 😋 It varies between browsers and it’s a bit of a surprise. Before I show you the screenshots, let me first tell you…
-
Setting Up Dual Compilation (SSR + CSR) in ViteJS with vite-plugin-builder
Using vite-plugin-builder to Set Up an SSR and CSR Project in Vite In this tutorial, I will show you how to create a project from scratch with Vite, configure it to build both Server-Side Rendering (SSR) and Client-Side Rendering (CSR) using the vite-plugin-builder plugin, which simplifies the whole process with a single command. What is…