CVE-2023-21968 - Inside the Oracle Java SE & GraalVM Libraries Vulnerability – Details, Exploit, and Mitigation
In March 2023, Oracle quietly patched a new vulnerability affecting its Java SE and GraalVM Enterprise platforms—tracked as CVE-2023-21968. With a CVSS score of
CVE-2023-2138 - Use of Hard-Coded Credentials in nuxtlabs/github-module (Pre-1.6.2) – Exploit Analysis and Fix
Security in open-source modules is vital—especially when those modules interact with powerful services like GitHub. In early 2023, a dangerous vulnerability was found in
CVE-2023-29507 - How XWiki’s DocumentAuthors API Opened the Door to Script Execution Attacks
XWiki is a popular open-source platform for creating collaborative knowledge bases and wikis. Many major industries rely on it—including education, research, and software development.
CVE-2018-17450 - GitLab Kubernetes Integration SSRF Vulnerability Exploited – How It Works & What You Need to Know
In this long-read, we’ll dive deep into CVE-2018-17450—an interesting and dangerous Server-Side Request Forgery (SSRF) vulnerability that affected GitLab Community and Enterprise Edition
CVE-2021-30153 - VisualEditor in MediaWiki Leaks Existence of Hidden Users
CVE-2021-30153 is a security vulnerability found in the VisualEditor extension for MediaWiki. MediaWiki is the open-source software that runs Wikipedia and many other wikis. The
Episode
00:00:00
00:00:00