CVE-2025-1243 - Data Converter Not Applied to Update Responses in Temporal api-go Proxy (<v1.44.1)
Temporal is a popular open-source workflow orchestration platform often used by companies to build distributed applications. The api-go library is one of the main ways
CVE-2024-54772 - How MikroTik RouterOS Winbox Leaks Valid Usernames with Timing Attacks
If you use MikroTik routers and depend on the Winbox service for management, there’s a new vulnerability you need to know about: CVE-2024-54772. This
CVE-2025-1240 - WinZip 7Z File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability Discovered and Exploited
A vulnerability has been discovered in WinZip software that allows remote attackers to execute arbitrary code on affected installations. The vulnerability can be exploited by
CVE-2024-32037 - Information Disclosure in GeoNetwork Search Endpoint (Easy Read & Exploit Details)
If your team works with geographic or spatial data, you might use GeoNetwork. It’s a widely-used catalog application for managing "spatially referenced resources.
CVE-2022-3180: WPGateway Plugin for WordPress Privilege Escalation Vulnerability - Creating Malicious Administrator Accounts
A critical vulnerability has been discovered in the WPGateway Plugin for WordPress, affecting versions up to and including 3.5. This vulnerability, assigned the Common
Episode
00:00:00
00:00:00