CVE-2025-1311 - SQL Injection Vulnerability in WooCommerce Multivendor Marketplace – REST API Plugin (WordPress)
A new and serious security flaw (CVE-2025-1311) was recently discovered in the popular WooCommerce Multivendor Marketplace – REST API plugin for WordPress. This vulnerability allows attackers
CVE-2025-30472 - Stack-Based Buffer Overflow in Corosync’s Token Handling (Exploit Details & Analysis)
CVE-2025-30472 is a critical stack-based buffer overflow vulnerability found in Corosync, the popular cluster engine used in high-availability (HA) systems such as Pacemaker or Proxmox
CVE-2025-30204 - Denial of Service in golang-jwt via ParseUnverified O(n) Memory Allocation
If you’re working with JWTs in Go, you’ve probably relied on the popular golang-jwt package. Recently, a critical vulnerability—CVE-2025-30204—was found in
CVE-2019-16151: FortiOS Vulnerability Exploited for Redirection Attacks and JavaScript Injection
FortiGate, a popular brand of security appliances designed for network protection, recently discovered a vulnerability in its FortiOS software. As reported in CVE-2019-16151, the improper
CVE-2025-30168 - Account Credential Leakage Vulnerability in Parse Server’s 3rd Party Auth — Details, Exploit, and Mitigation
Published: June 2024
Introduction
Parse Server is a well-known open source backend platform for app developers, popular for its flexibility and ability to run on
Episode
00:00:00
00:00:00