CVE-2023-23913 - DOM-based XSS in rails-ujs via Clipboard API and contenteditable
In February 2023, security researchers discovered a critical DOM-based Cross-Site Scripting (XSS) vulnerability in rails-ujs (Unobtrusive JavaScript adapter for Rails). This issue, tracked as CVE-2023-23913,
CVE-2023-38037 - Danger in ActiveSupport::EncryptedFile – How Your Secret Files Could Leak to Other Users
ActiveSupport, part of the popular Rails framework, helps developers keep sensitive data safe by handling encrypted files. But in 2023, a serious security issue was
CVE-2025-0194 - GitLab Token Exposure Vulnerability Explained (With Exploit Details & Code Example)
GitLab is one of the most widely used platforms for code hosting, CI/CD pipelines, and team collaboration. Security in such systems is critical, especially
CVE-2024-56778 - Linux Kernel drm/sti Error Pointer Dereference Vulnerability Explained
In June 2024, a new vulnerability, CVE-2024-56778, was identified and patched in the Linux kernel. The bug affects the DRM driver for STMicroelectronics hardware, specifically
CVE-2024-56776 - How a Simple Check in Linux Kernel's `drm/sti` Component Prevented a Crasher
On June 2024, a subtle yet important bug was patched in the Linux kernel—specifically in the drivers/gpu/drm/sti subsystem. The Common Vulnerabilities
Episode
00:00:00
00:00:00