CVE-2023-32188 - How NeuVector’s JWT Vulnerability Can Lead to RCE—A Deep Dive
CVE-2023-32188 is a critical vulnerability that surfaced in NeuVector, a popular container security platform. This bug revolves around how NeuVector handled JWT (JSON Web Token)
CVE-2023-22649 - Sensitive Data Exposure in Rancher Audit Logs Explained
Date identified: January 2023
CVSS Score: 5.3 (Medium)
Impacted Product: Rancher (all versions prior to 2.7.)
Reference: Rancher Security Advisory
Audit logs are
CVE-2024-9958 - UI Spoofing in Google Chrome Picture-in-Picture — Full Analysis & Exploit Explained
Published June 2024
Exploit Difficulty: Medium · Severity: Medium
Scope: Chrome < 130..6723.58 · Reported by Google Project Zero
Introduction
On June 2024, Google published
CVE-2024-45740 - Simple Guide to the Splunk Scheduled Views XSS Vulnerability (with Code, Examples, and References)
In May 2024, a critical security flaw—CVE-2024-45740—was discovered in Splunk Enterprise (versions below 9.2.3 and 9.1.6) and Splunk Cloud
CVE-2024-47875 - Breaking Down the DOMPurify mXSS Vulnerability (With Exploit Example and Fix!)
If you’re building web apps in 2024, chances are you use tools to keep your users safe—especially against XSS (Cross-Site Scripting). One of
Episode
00:00:00
00:00:00