CVE-2022-41892 - Critical SQL Injection Vulnerability in Arches Geospatial Platform – Exploit Details & Secure Your Data Now
Arches is a popular open-source web platform used by researchers, governments, and heritage organizations to create, manage, and visualize geospatial data—think important digital maps
CVE-2022-41876 - How a Simple GraphQL Query Could Leak Admin Password Hashes in ezplatform-graphql
On October 26, 2022, a critical vulnerability was disclosed in the ezplatform-graphql package—a popular GraphQL server implementation for Ibexa DXP and Ibexa Open Source.
CVE-2022-39394 - Behind the Scenes of Wasmtime’s C API Buffer Overflow
CVE-2022-39394 is a vulnerability that quietly lurked in Wasmtime, a popular standalone WebAssembly runtime, up until version 2..2. This post will walk you through
CVE-2022-41719 - How a Panic in Golang's Unmarshal Can Lead to Denial of Service
In November 2022, the Golang (Go) project disclosed a vulnerability tracked as CVE-2022-41719. This bug affects the Unmarshal function in the popular encoding/gob package.
CVE-2022-38119 - Bypassing Authentication in UPSMON Pro — Full Exploit and Analysis
In September 2022, a serious vulnerability, CVE-2022-38119, was disclosed affecting the popular UPSMON Pro software. This post will break down how the attack works in
Episode
00:00:00
00:00:00