CVE-2025-24888 - Code Execution Vulnerability in SecureDrop Client via Malicious Server
Summary:
A critical vulnerability, CVE-2025-24888, was discovered in the SecureDrop Client—a desktop application used in newsrooms for secure source communication. This flaw, fixed in
CVE-2025-26511 - Privilege Escalation in Instaclustr Cassandra-Lucene-Index Plugin—Your Data At Risk
> Summary:
CVE-2025-26511 exposes a dangerous weakness found in the Instaclustr fork of Stratio's Cassandra-Lucene-Index plugin, affecting plugin versions 4.-rc1-1.. through 4.
CVE-2025-24904 - Critical Vulnerability in libsignal-service-rs Exposes Signal Users to Message Injection Attacks
A severe security vulnerability has been discovered in libsignal-service-rs (the Rust translation of the Signal transport protocol, originally implemented in Java). CVE-2025-24904 allows servers or
CVE-2025-25357 - SQL Injection in PHPGurukul Land Record System v1. via /admin/contactus.php Email Parameter – Full Exploit & Exclusive Analysis
---
Introduction
Recently, a serious vulnerability (CVE-2025-25357) came to light in the PHPGurukul Land Record System v1.. This high-risk SQL Injection bug allows remote attackers
Episode
00:00:00
00:00:00