CVE-2025-24964 - Critical Remote Code Execution in Vitest via Cross-site WebSocket Hijacking
Vitest is a popular testing framework built on top of Vite. With its blazing speed and developer-friendly features, it’s become a go-to choice for
CVE-2025-24968 - Full System Takeover in reNgine via Unrestricted Project Deletion Vulnerability
reNgine is a well-known open-source automated reconnaissance framework used primarily for web application security assessments. On June 2025, a critical vulnerability, CVE-2025-24968, came to light,
CVE-2025-0451 - How a Google Chrome Extensions API Flaw Enabled UI Spoofing Attacks
In early 2025, security researchers identified a medium-severity vulnerability in Google Chrome, formally registered as CVE-2025-0451. This flaw, present in Chrome versions prior to 133.
CVE-2025-1019 - Hiding the Fullscreen Notification in Firefox and Thunderbird Leads to Spoofing Risks
A new vulnerability, CVE-2025-1019, has been discovered in Mozilla Firefox and Thunderbird versions before 135. This flaw allows attackers to trick users by manipulating the
CVE-2025-1018 - How Rapid Fullscreen Re-Requests Can Spoof Users in Firefox and Thunderbird
Published: June 2024 <br>Impacted Versions: Firefox < 135, Thunderbird < 135 <br>Severity: Medium <br>Type: Spoofing/UX
Episode
00:00:00
00:00:00