CVE-2025-32907 - How a Bug in libsoup’s HTTP Range Handling Can Eat Your Server’s Memory
A new security issue, tracked as CVE-2025-32907, was recently found in libsoup, a popular HTTP library used on Linux systems (especially in GNOME and web
CVE-2025-32913 - Crashing Libsoup via NULL Pointer Dereference in soup_message_headers_get_content_disposition()
---
Introduction
On June 10, 2024, CVE-2025-32913 was published detailing a critical vulnerability in libsoup, a widely used HTTP client/server library for GNOME and
CVE-2025-24859 - Apache Roller Session Invalidation Flaw Explained (with Example & Exploit Details)
A new security vulnerability has been found in the Apache Roller blog server, tracked as CVE-2025-24859. Before version 6.1.5, Roller failed to invalidate
CVE-2025-32093 - Mattermost Improper Permission Validation Lets Non-Admins Modify System Administrators (With Exploit Details)
On June 2024, the security community identified a critical vulnerability in Mattermost, the popular open-source messaging platform designed for teams and enterprises. Tracked as CVE-2025-32093,
CVE-2025-3552 - Unrestricted File Upload in Lingxing ERP 2 (Exploit and Analysis)
A new critical vulnerability—CVE-2025-3552—has been discovered in the popular business management software, Lingxing ERP 2. This flaw, present in the /Api/TinyMce/UploadAjax.
Episode
00:00:00
00:00:00