CVE-2025-26357 - Path Traversal Vulnerability in Q-Free MaxTime ≤ 2.11. (Exploit & Technical Breakdown)
CVE-2025-26357 is a critical Path Traversal vulnerability (CWE-35) discovered in the Q-Free MaxTime traffic management software, affecting all versions up to and including 2.11.
CVE-2024-10322 - How Brizy – Page Builder Plugin for WordPress Was Vulnerable to Authenticated SVG XSS
---
If you use WordPress to build sites, you may have heard of Brizy – Page Builder, a popular plugin used on more than 90,000
CVE-2024-32838 - SQL Injection in Apache Fineract REST API Endpoints – What You Need to Know
In June 2024, a critical security vulnerability was disclosed in Apache Fineract (official advisory link), an open-source platform known for powering microfinance and digital lending
CVE-2025-1243 - Data Converter Not Applied to Update Responses in Temporal api-go Proxy (<v1.44.1)
Temporal is a popular open-source workflow orchestration platform often used by companies to build distributed applications. The api-go library is one of the main ways
CVE-2024-53880 - Exploiting NVIDIA Triton Inference Server Model File Integer Overflow Vulnerability
NVIDIA Triton Inference Server is widely used for deploying machine learning models at scale. Security researchers recently discovered a serious vulnerability tracked as CVE-2024-53880. This
Episode
00:00:00
00:00:00