CVE-2024-50602 - How a Bug in libexpat (Before 2.6.4) Can Crash Your App – Deep Dive & Exploit Example
---
Libexpat is a well-known C library used for parsing XML. Many projects use it under the hood, from popular Linux tools to commercial software.
CVE-2024-10410 - Critical Unrestricted File Upload Vulnerability in SourceCodester Online Hotel Reservation System 1.
Recently, a critical vulnerability, CVE-2024-10410, was uncovered in the SourceCodester Online Hotel Reservation System version 1.. This flaw gives attackers the ability to upload *any*
CVE-2024-49757 - Zitadel User Self-Registration Bypass Explained
On June 6th, 2024, a new vulnerability was assigned CVE-2024-49757 affecting several versions of Zitadel, the popular open-source identity and access management software. Zitadel is
CVE-2024-8312 - How a Simple Search Box Let Attackers Run Code in GitLab—Understanding & Exploiting the Global Search XSS Bug
On June 2nd, 2024, the GitLab security team published an advisory about a serious Cross-Site Scripting (XSS) vulnerability affecting the popular code collaboration service, GitLab
CVE-2024-20481 - How a Flood of VPN Requests Can Take Down Cisco ASA and FTD Devices
If you’re running Cisco Adaptive Security Appliance (ASA) or Cisco Firepower Threat Defense (FTD) and have Remote Access VPN (RAVPN) enabled, a serious vulnerability
Episode
00:00:00
00:00:00