CVE-2024-32760 - Exploiting the NGINX HTTP/3 QUIC Encoder Crash Vulnerability
On May 2024, a new vulnerability was discovered in NGINX, specifically when running the HTTP/3 QUIC module. Known as CVE-2024-32760, this flaw can cause
CVE-2024-35311 - Cracking Open Yubico YubiKey’s Hidden Security Flaw – What Went Wrong, Exploit Scenarios, and Secure Fixes
On May 2024, a major security vulnerability—CVE-2024-35311—was published in several Yubico hardware security tokens, notably the YubiKey 5 Series, Security Key Series, YubiKey
CVE-2024-31079 - Understanding the NGINX HTTP/3 QUIC Denial-of-Service Vulnerability
On April 16, 2024, NGINX disclosed a new vulnerability tracked as CVE-2024-31079. This issue affects both NGINX OSS (Open Source Software) and NGINX Plus when
CVE-2024-4358 - Authentication Bypass in Telerik Report Server – Deep Dive & Exploit Walkthrough
On May 2024, a critical vulnerability was discovered in Telerik Report Server, tracked as CVE-2024-4358. This flaw affects Telerik Report Server version 2024 Q1 (10.
CVE-2024-35240 - Stored XSS in Umbraco Commerce Print Functionality – Vulnerability Deep Dive and Exploit Example
Umbraco Commerce is a powerful, open-source .NET e-commerce platform used by many websites to handle online sales and order management. Recently, a severe security vulnerability
Episode
00:00:00
00:00:00