Cyber Defense Magazine

Prompt Injection and Model Poisoning: The New Plagues of AI Security

You wake up. Your AI wakes up. Somewhere, a stranger types a sentence, and your AI listens. This is not science fiction. This ...
GitHub

CVE-2024-13979 - St. Joe ERP system - SQL Injection

St. Joe ERP system contains a sql injection caused by improper sanitization of user input in the login endpoint, letting unauthenticated remote attackers execute arbitrary SQL commands, exploit ...
GitHub

CVE-2024-3552 Web Directory Free <= 1.6.9 - Unauthenticated SQL Injection

The Web Directory Free plugin for WordPress is vulnerable to SQL Injection in all versions up to, and including, 1.6.9 due to insufficient escaping on a user supplied parameter and lack of sufficient ...