CVE-2025-1538 - Critical Heap Overflow in D-Link DAP-132’s set_ws_action Function Enables Remote Exploitation
Summary:
A critical vulnerability, tagged as CVE-2025-1538, was discovered in D-Link DAP-132 firmware version 1.00. The flaw resides in the set_ws_action function
CVE-2025-1470: Handling NULL Pointer Dereferences and Memory Allocation Failures in Eclipse OMR
In this post, we are going to discuss an important bug that existed in the Eclipse OMR project until version .4.. The vulnerability, identified as
CVE-2024-55457 - MasterSAM Star Gate 11 Vulnerable to Directory Traversal via /adama/adama/downloadService (Exploit & Analysis)
In June 2024, a critical directory traversal vulnerability was discovered in MasterSAM Star Gate 11, a popular web-based access management solution. Tracked as CVE-2024-55457, this
CVE-2025-27218 - Critical Remote Code Execution in Sitecore XM/XP 10.4 via Insecure Deserialization
Sitecore is a popular enterprise-grade content management system used by organizations worldwide. In March 2025, a serious vulnerability was identified in Sitecore Experience Manager (XM)
CVE-2025-24989 - Power Pages Improper Access Control Flaw Explained, With Exploit Details
In early 2025, security researchers found an improper access control vulnerability in Microsoft's Power Pages platform, tracked as CVE-2025-24989. This issue allowed unauthorized
Episode
00:00:00
00:00:00