CVE-2025-27610 - Path Traversal in Ruby Rack’s Static File Server (Rack::Static) – How Attackers Can Read Sensitive Files
Published: June 2024
*By SecHub Team*
Overview
Rack is a popular Ruby interface for web servers and frameworks, acting as the backbone for frameworks like
CVE-2025-27597 - Prototype Pollution in Vue I18n Could Lead to Severe Security Risks
Vue I18n is a widely used internationalization (i18n) plugin for Vue.js. It lets developers add multilingual support to their Vue apps easily. However, a
CVE-2025-27152 - Critical SSRF and Credential Leakage in Axios via Absolute URL Handling
Axios is one of the most popular HTTP clients for JavaScript, widely used across both browser and Node.js environments. It’s often praised for
CVE-2024-13857 - Server-Side Request Forgery in WPGet API – Connect to any external REST API WordPress Plugin
A severe vulnerability has been discovered in the WPGet API – Connect to any external REST API plugin for WordPress. Tracked as CVE-2024-13857, this flaw exposes
CVE-2024-57972 - How a Simple API Flood Can Bring Down Microsoft HoloLens Devices
Microsoft HoloLens isn't just cool tech; it's the backbone of mixed reality apps in labs, hospitals, factories, and other critical workplaces.
Episode
00:00:00
00:00:00