CVE-2025-1018 - How Rapid Fullscreen Re-Requests Can Spoof Users in Firefox and Thunderbird
Published: June 2024 <br>Impacted Versions: Firefox < 135, Thunderbird < 135 <br>Severity: Medium <br>Type: Spoofing/UX
CVE-2025-1010: A Use-After-Free Vulnerability in the Custom Highlight API and Its Exploit Details
The CVE-2025-1010 security vulnerability has been discovered, showcasing a use-after-free issue within the Custom Highlight API which could be exploited by a skilled attacker. By
CVE-2025-0466 - Breaking Down the Sensei LMS WordPress Plugin Information Leak (Before Version 4.24.4)
WordPress powers much of the web. With so many sites relying on plugins, vulnerabilities can ripple through the ecosystem fast. Today, let’s talk about
CVE-2024-34897 - API Key Disclosure in Nedis SmartLife Android App v1.4. — How It Works and What It Means for You
---
In June 2024, security researchers published information on a critical vulnerability, CVE-2024-34897, found in the Nedis SmartLife Android app v1.4.. This long read
CVE-2025-25064 - SQL Injection in ZimbraSync Service SOAP Endpoint Exposes Critical Email Metadata (Explained with Exploit Example)
Published: June 2024
Zimbra Collaboration Suite (ZCS) is a widely used open-source email and collaboration platform, adopted by businesses and organizations all over the world.
Episode
00:00:00
00:00:00