CVE-2025-1080 – Exploit in LibreOffice URI Scheme to Hijack MS SharePoint Server Integration
LibreOffice, the popular open-source office application suite, is affected by a critical security vulnerability that allows an attacker to execute arbitrary code on the victim’
CVE-2025-27507 - Critical IDOR in ZITADEL Allows Account Takeover via LDAP Config Manipulation
ZITADEL is a widely used open-source identity and access management (IAM) solution, helping organizations manage authentication, user registration, and authorization. Designed to be flexible, secure,
CVE-2024-11957 - Breaking Down an Unpatched Digital Signature Bug in Kingsoft WPS Office (ksojscore.dll) Enabling Arbitrary DLL Loading
Kingsoft WPS Office is a widely-used productivity suite that's especially popular in China and among users who want a free alternative to Microsoft
CVE-2025-0684 - Exploiting Grub2's ReiserFS Symlink Handling for Secure Boot Bypass
_Discovered in early 2025, CVE-2025-0684 exposes a critical flaw in GRUB2's implementation of the ReiserFS filesystem. This vulnerability lets attackers craft malicious ReiserFS
CVE-2024-55532 - Formula Injection in Apache Ranger CSV Export—How Hackers Can Turn Your CSV Into Their Playground
In April 2024, a new vulnerability emerged for everyone who uses Apache Ranger: CVE-2024-55532. This flaw deals with something that sounds boring but can be
Episode
00:00:00
00:00:00