Stored XSS with Filter Bypass - blogenginev3.3.8

Read Time:24 Second

Posted by Andrey Stoykov on Dec 18

# Exploit Title: Stored XSS with Filter Bypass – blogenginev3.3.8
# Date: 12/2024
# Exploit Author: Andrey Stoykov
# Version: 3.3.8
# Tested on: Ubuntu 22.04
# Blog:
https://msecureltd.blogspot.com/2024/12/friday-fun-pentest-series-16-stored-xss.html

Stored XSS Filter Bypass #1:

Steps to Reproduce:

1. Login as admin and go to “Content” > “Posts”
2. On the right side of the page choose “Categories”
3. In…

[SYSS-2024-085]: Broadcom CA Client Automation – Improper Privilege Management (CWE-269)

Posted by Matthias Deeg via Fulldisclosure on Dec 18 Advisory ID: SYSS-2024-085 Product: CA Client Automation (CA DSM) Manufacturer: Broadcom...

December 19, 2024

webkitgtk-2.46.5-1.fc40

FEDORA-2024-03a1955920 Packages in this update: webkitgtk-2.46.5-1.fc40 Update description: Update to 2.46.5: Fix several crashes and rendering issues. CVE-2024-54479, CVE-2024-54502, CVE-2024-54508,...

December 19, 2024

webkitgtk-2.46.5-1.fc41

FEDORA-2024-32bc143584 Packages in this update: webkitgtk-2.46.5-1.fc41 Update description: Update to 2.46.5: Fix several crashes and rendering issues. CVE-2024-54479, CVE-2024-54502, CVE-2024-54508,...

December 19, 2024