CVE-2024-12379 - How Attackers Crash GitLab with Unbounded Symbol Creation
In early 2024, CVE-2024-12379 was announced, highlighting a dangerous Denial of Service (DoS) flaw in GitLab Community Edition (CE) and GitLab Enterprise Edition (EE). This
CVE-2025-26357 - Path Traversal Vulnerability in Q-Free MaxTime ≤ 2.11. (Exploit & Technical Breakdown)
CVE-2025-26357 is a critical Path Traversal vulnerability (CWE-35) discovered in the Q-Free MaxTime traffic management software, affecting all versions up to and including 2.11.
CVE-2024-10322 - How Brizy – Page Builder Plugin for WordPress Was Vulnerable to Authenticated SVG XSS
---
If you use WordPress to build sites, you may have heard of Brizy – Page Builder, a popular plugin used on more than 90,000
CVE-2024-32838 - SQL Injection in Apache Fineract REST API Endpoints – What You Need to Know
In June 2024, a critical security vulnerability was disclosed in Apache Fineract (official advisory link), an open-source platform known for powering microfinance and digital lending
CVE-2024-53880 - Exploiting NVIDIA Triton Inference Server Model File Integer Overflow Vulnerability
NVIDIA Triton Inference Server is widely used for deploying machine learning models at scale. Security researchers recently discovered a serious vulnerability tracked as CVE-2024-53880. This
Episode
00:00:00
00:00:00