CVE 2024-37397 - Ivanti Endpoint Manager XXE Vulnerability
·2762 words·13 mins
This blog provides an in-depth analysis of the exploitation process for an unauthenticated XXE vulnerability in Ivanti Endpoint Manager, identified as CVE-2024-37397.
CVE Analysis
2024
CVE 2024-4040 - CrushFTP Server-Side Template Injection Vulnerability Analysis
·4802 words·23 mins
This blog post contains a thorough analysis of Server Side Template Injection vulnerability in a commercial Managed File Transfer product named CrushFTP.