CVE-2024-3115 - Exploiting GitLab EE’s SSO Bypass for Issues & Epics via Duo Chat
On April 2024, security researchers discovered a major vulnerability—CVE-2024-3115—in GitLab Enterprise Edition (EE). This flaw lets attackers bypass Single Sign-On (SSO) controls and
CVE-2024-1816 - Denial of Service in GitLab via Crafted OpenAPI File — Full Disclosure & Exploit Guide
GitLab is one of the world’s most popular platforms for software development, powering source code repositories at companies large, small, and everything in between.
CVE-2024-38526 - How pdoc’s API Docs Became a Security Nightmare via polyfill.io
If you use pdoc to generate API documentation for your Python projects, you might want to check how your docs load JavaScript. A recent vulnerability,
CVE-2024-6307 - WordPress Core Stored XSS Vulnerability via HTML API – What You Need to Know
Last Updated: June 2024
WordPress is the world’s most popular content management system, running about half the web. But when a critical security vulnerability
CVE-2024-3605 - Critical SQL Injection in WP Hotel Booking WordPress Plugin
*Published: June 2024 | By: WP Security Insights*
WP Hotel Booking is a popular WordPress plugin that helps hotel owners manage booking systems directly from their
Episode
00:00:00
00:00:00