Find the latest CVE releases with Vicarius’s free, unlimited access to the world's software CVE database.
Our advanced and intuitive research engine makes CVE vulnerability data and software analysis easy to find.
Trending CVEs March 2023
Explore by Tags
CVE
Recent Apps
Recent Operating Systems
http://www.vicarius.io
is owned and operated by Vicarius Ltd. (the “Company”). All information contained on the
Website is purely for informational, and educational purposes and should be independently
verified and confirmed. Vicarius does not accept any liability for any loss or damage
whatsoever caused in reliance upon such information or services. No statements or information
presented in any form by Vicarius is intended as fact, and you agree that you will not
consider the statements or information presented on the Website as fact or as a guarantee of
performance.
In this blog, we are going to analyze the information disclosure in Joomla that allows an attacker to exploit it to gain unauthorized access. we will dive deep inside the flow of Joomla, how it works, and how the vulnerability happened.
By Mudassar Zafar
Mar 22, 2023
Apache Zero Days - Apache Spark Command Injection Vulnerability (CVE-2022-33891)
The Apache Spark command injection vulnerability (CVE-2022-33891) was discovered by the Sangfor FarSight Labs team and reported to the Apache Spark project team on July 18, 2022. The vulnerability was classified as high severity, with a CVSS (Common Vulnerability Scaling System) Base Score of 8.8, indicating a high potential impact.
By j00sean (https://twitter.com/j00sean)
Mar 01, 2023
CVE-2022-44666: Microsoft Windows Contacts (VCF/Contact/LDAP) syslink control href attribute escape vulnerability
My thoughts and more on this bug!
By Youssef Muhammad
Mar 01, 2023
KeePass Passwords Theft CVE-2023-240550
Analysis in-details for CVE-2023-240550-KeePass Passwords Theft and how to exfiltrate the data
By Mohammad Hussam Alzeyyat
Feb 28, 2023
CVE-2022–44267: Denial Of Service in ImageMagick
In this blog, we are going to take a ride check on the DoS that has been found in ImageMagick CVE-2022-44267. We will not be diving too much into the details, but make no mistake we will be having fun :D.