CVE-2023-20094 - How a Bounds Check Flaw Exposes Sensitive Data in Cisco Webex Desk Hub
In June 2023, Cisco disclosed CVE-2023-20094, a vulnerability which affects certain TelePresence CE and RoomOS products, notably the Cisco Webex Desk Hub. This bug lets
CVE-2023-5359 - How W3 Total Cache’s Google OAuth API Secrets Leaked Sensitive Info (with Exploit Details)
If you use WordPress, chances are you’ve heard of the W3 Total Cache plugin. It helps speed up your website and is super popular
CVE-2024-9014 - OAuth2 Credential Exposure in pgAdmin <= 8.11 – Full Details, Exploit Demo, and Mitigation
On June 10, 2024, security researchers disclosed a new vulnerability in pgAdmin, a popular web-based management tool for PostgreSQL databases. Tracked as CVE-2024-9014, this security
CVE-2024-8883 - Keycloak Misconfiguration Lets Attackers Steal Login Tokens with Open Redirects
Keycloak is a popular tool for single sign-on (SSO) and identity management, powering login systems for many organizations. But in early 2024, a new misconfiguration
CVE-2024-38222 - Exposing Sensitive Data via Microsoft Edge (Chromium) Information Disclosure Vulnerability
In June 2024, Microsoft published a security advisory for CVE-2024-38222, a newly discovered information disclosure vulnerability affecting Microsoft Edge, the Chromium-based edition. This vulnerability, if
Episode
00:00:00
00:00:00