CVE-2025-27597 - Prototype Pollution in Vue I18n Could Lead to Severe Security Risks
Vue I18n is a widely used internationalization (i18n) plugin for Vue.js. It lets developers add multilingual support to their Vue apps easily. However, a
CVE-2025-27152 - Critical SSRF and Credential Leakage in Axios via Absolute URL Handling
Axios is one of the most popular HTTP clients for JavaScript, widely used across both browser and Node.js environments. It’s often praised for
CVE-2024-13857 - Server-Side Request Forgery in WPGet API – Connect to any external REST API WordPress Plugin
A severe vulnerability has been discovered in the WPGet API – Connect to any external REST API plugin for WordPress. Tracked as CVE-2024-13857, this flaw exposes
CVE-2025-27816 - Insecure Deserialization in Arctera InfoScale’s Windows Plugin_Host Service
In early 2025, security researchers discovered a serious vulnerability tracked as CVE-2025-27816 in Arctera InfoScale versions 7. through 8..2. This flaw comes from insecure
CVE-2025-27598 - Out-of-Bounds Write Vulnerability in ImageSharp GIF Decoder—How Attackers Can Crash Your App
_ImageSharp_ is a popular .NET library for 2D graphics, used by thousands of web applications for image processing. But in early 2025, a dangerous vulnerability
Episode
00:00:00
00:00:00