CVE-2024-47089 : APEX SOFTCELL LD GEO API ENDPOINT INTEGRITY CHECK
Description This vulnerability exists in the Apex Softcell LD Geo due to improper validation of the transaction token ID in the API endpoint. An authenticated…
CVE-2024-46946 : LANGCHAIN_EXPERIMENTAL UP TO 0.3.0 SYMPY.SYMPIFY INPUT VALIDATION
Description langchain_experimental (aka LangChain Experimental) 0.1.17 through 0.3.0 for LangChain allows attackers to execute arbitrary code through sympy.sympify (which uses eval) in LLMSymbolicMathChain. LLMSymbolicMathChain was…
CVE-2024-46373 : DEDECMS 5.7.115 UNRESTRICTED UPLOAD
Description Dedecms V5.7.115 contains an arbitrary code execution via file upload vulnerability in the backend. References https://github.com/gaorenyusi/gaorenyusi/blob/main/CVE-2024-46373.md For More Information CVERecord
CVE-2024-44589 : D-LINK DCS-960L 1.09 HNAP SERVICE LOGIN STACK-BASED OVERFLOW
Description Stack overflow vulnerability in the Login function in the HNAP service in D-Link DCS-960L with firmware 1.09 allows attackers to execute of arbitrary code.…
What Is OAuth And Its Role In API Security?
In today’s interconnected digital ecosystems, it is important to secure APIs to protect sensitive data and ensure integrity of communication between systems Systems widely used…
CVE-2024-8887 : CIRCUTOR Q-SMT 1.0.4 IMPROPER VALIDATION OF SPECIFIED QUANTITY IN INPUT
Description CIRCUTOR Q-SMT in its firmware version 1.0.4, could be affected by a denial of service (DoS) attack if an attacker with access to the…