CVE-2024-51983 – Cisco Web Services Crash DoS

June 25, 2025

CVE ID : CVE-2024-51983

Published : June 25, 2025, 8:15 a.m. | 2 hours, 42 minutes ago

Description : An unauthenticated attacker who can connect to the Web Services feature (HTTP TCP port 80) can issue a WS-Scan SOAP request containing an unexpected JobToken value which will crash the target device. The device will reboot, after which the attacker can reissue the command to repeatedly crash the device.

Severity: 7.5 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2024-51984 – Apache Device Passcode Authentication Service Password Disclosure Vulnerability

Next Article CVE-2024-51982 – HP Printer PJL Variable FORMLINES Denial of Service

Highlights

CVE-2025-4168 – WordPress Subpage List Stored Cross-Site Scripting

May 3, 2025

CVE ID : CVE-2025-4168

Published : May 3, 2025, 3:15 a.m. | 2 hours, 15 minutes ago

Description : The Subpage List plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin’s ‘subpages’ shortcode in all versions up to, and including, 1.3.3 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

Severity: 6.4 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

In an embarrassment for Microsoft, SteamOS seems to destroy Windows 11 on gaming performance and battery life, as well as usability

May 26, 2025

Dot Matrix creates glyphs

May 24, 2025

CVE-2025-3907 – Drupal Search API Solr CSRF

April 23, 2025

The Power Of The Intl API: A Definitive Guide To Browser-Native Internationalization

This week in AI dev tools: GPT-5, Claude Opus 4.1, and more (August 8, 2025)

Elastic simplifies log analytics for SREs and developers with launch of Log Essentials

OpenAI launches GPT-5

I compared the best headphones from Apple, Sony, Bose, and Sonos: Here’s how the AirPods Max wins

I changed these 6 settings on my iPad to significantly improve its battery life

DistroWatch Weekly, Issue 1134

3 portable power stations I travel everywhere with (and how they differ)

Next.js PWA offline capability with Service Worker, no extra package

Next.js PWA offline capability with Service Worker, no extra package

spatie/laravel-flare

Establishing Consistent Data Foundations with Laravel’s Database Population System

Windows 11 Copilot gets free access to GPT-5 Thinking, reduced rate limits than ChatGPT Free

Windows 11 Copilot gets free access to GPT-5 Thinking, reduced rate limits than ChatGPT Free

Best Architecture AI Rendering Platform: 6 Tools Tested

Microsoft won’t kill off Chromium Edge and PWAs on Windows 10 until October 2028

CVE-2024-51983 – Cisco Web Services Crash DoS

Researchers Reveal ReVault Attack Targeting Dell ControlVault3 Firmware in 100+ Laptop Models

Researchers Detail Windows EPM Poisoning Exploit Chain Leading to Domain Privilege Escalation

CVE-2025-47229 – GNU PSPP Denial of Service Vulnerability

Native array_first() and array_last() Functions in PHP 8.5

My new favorite multi-port charging station is $50 off on Amazon right now

CVE-2025-7786 – Gnuboard Cross-Site Scripting Vulnerability

CVE-2025-4168 – WordPress Subpage List Stored Cross-Site Scripting

In an embarrassment for Microsoft, SteamOS seems to destroy Windows 11 on gaming performance and battery life, as well as usability

Dot Matrix creates glyphs

CVE-2025-3907 – Drupal Search API Solr CSRF

CVE-2024-51983 – Cisco Web Services Crash DoS

Related Posts