CVE-2023-40714 - Understanding and Exploiting Path Traversal in Fortinet FortiSIEM
In September 2023, Fortinet published a security advisory for a newly discovered vulnerability: CVE-2023-40714. This bug affects several versions of FortiSIEM—Fortinet’s security information
CVE-2024-42325 - Zabbix User Enumeration and Sensitive Information Exposure via API
CVE-2024-42325 is a recently disclosed vulnerability affecting Zabbix, the popular open-source monitoring solution. The flaw lies in how the Zabbix API’s user.get method
CVE-2024-36465 - How Regular Zabbix Users Can Exploit SQL Injection via groupBy Parameter
In June 2024, a severe security vulnerability—CVE-2024-36465—was publicly disclosed for Zabbix, a popular open-source monitoring tool used to track the status of servers
CVE-2025-3067 - Exploiting Chrome Custom Tabs on Android for Privilege Escalation (Full Breakdown & Demo Code)
---
CVE-2025-3067 is a medium-severity vulnerability reported in March 2025, specifically impacting how Google Chrome on Android handled "Custom Tabs" before version 135.
CVE-2025-21934 - API Misuse in Linux Kernel rapidio Subsystem – Details and Exploit Walkthrough
On March 2024, a vulnerability was disclosed in the Linux kernel’s RapidIO subsystem, tracked as CVE-2025-21934. This post will break down what went wrong,
Episode
00:00:00
00:00:00