CVE-2024-37743 – KnowledgeGPT Arbitrary Code Execution Vulnerability

June 24, 2025

CVE ID : CVE-2024-37743

Published : June 24, 2025, 8:15 p.m. | 44 minutes ago

Description : An issue in mmzdev KnowledgeGPT V.0.0.5 allows a remote attacker to execute arbitrary code via the Document Display Component.

Severity: 9.8 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2024-56917 – Netbox Community XSS in Maintenance Banner

Next Article CVE-2025-5087 – Kaleris NAVIS N4 ULC Unencrypted Data Exposure

Highlights

CVE-2025-49130 – Laravel Translation Manager Stored Cross-Site Scripting Vulnerability

June 9, 2025

CVE ID : CVE-2025-49130

Published : June 9, 2025, 1:15 p.m. | 2 hours, 25 minutes ago

Description : Laravel Translation Manager is a package to manage Laravel translation files. Prior to version 0.6.8, the application is vulnerable to Cross-Site Scripting (XSS) attacks due to incorrect input validation and sanitization of user-input data. An attacker can inject arbitrary HTML code, including JavaScript scripts, into the page processed by the user’s browser, allowing them to steal sensitive data, hijack user sessions, or conduct other malicious activities. Only authenticated users with access to the translation manager are impacted. The issue is fixed in version 0.6.8.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Google’s Agent2Agent protocol finds new home at the Linux Foundation

Decoding The SVG path Element: Curve And Arc Commands

This week in AI dev tools: Gemini 2.5 Pro and Flash GA, GitHub Copilot Spaces, and more (June 20, 2025)

Gemini 2.5 Pro and Flash are generally available and Gemini 2.5 Flash-Lite preview is announced

Summer Game Fest had a bit of a “weird” vibe this year — an extremely mixed bag of weak presentations and interesting titles

The Lenovo Legion Go 2 gets its first release date tease, which could be accurate — but treat with the biggest pinch of salt

Denmark will stick with Windows — government still plans to ditch Microsoft Office

OneDrive user locked out of “30 years worth of photos and work” without any support — calls Microsoft a “Kafkaesque black hole”

Best PHP Project for Final Year Students: Learn, Build, and get Successful with PHPGurukul

Best PHP Project for Final Year Students: Learn, Build, and get Successful with PHPGurukul

Community News: Latest PECL Releases (06.24.2025)

JSON module scripts are now Baseline Newly Available

Summer Game Fest had a bit of a “weird” vibe this year — an extremely mixed bag of weak presentations and interesting titles

Summer Game Fest had a bit of a “weird” vibe this year — an extremely mixed bag of weak presentations and interesting titles

The Lenovo Legion Go 2 gets its first release date tease, which could be accurate — but treat with the biggest pinch of salt

Denmark will stick with Windows — government still plans to ditch Microsoft Office

CVE-2024-37743 – KnowledgeGPT Arbitrary Code Execution Vulnerability

Multiple vulnerabilities in Sitecore CMS | Kaspersky official blog

Don’t panic, but it’s only a matter of time before critical ‘CitrixBleed 2’ is under attack

CVE-2025-6301 – PHPGurukul Notice Board System Cross-Site Scripting Vulnerability

CVE-2024-12442 – EnerSys AMPA Command Injection Vulnerability

CISA Adds SAP NetWeaver Vulnerability to KEV Catalog

CVE-2025-46573 – OpenSAMLPassport-WSFed Impersonation Vulnerability

CVE-2025-49130 – Laravel Translation Manager Stored Cross-Site Scripting Vulnerability

CVE-2025-26382 – iSTAR ICU Buffer Overflow

CVE-2025-2524 – Ninja Forms WordPress Stored Cross-Site Scripting Vulnerability

Microsoft is bringing back seconds to Windows 10 Clock after outrage

CVE-2024-37743 – KnowledgeGPT Arbitrary Code Execution Vulnerability

Related Posts