CVE-2025-35939 - How Unauthenticated Users Could Inject Content into Craft CMS Session Files
*Published: June 2024*
Craft CMS is a widely used content management system for building flexible websites and digital experiences. But recently, a serious vulnerability (tracked
CVE-2025-46661 - Exploiting Unauthenticated Remote Code Execution in IPW Systems Metazo (Analyze & Demo)
In early 2025, security researchers spotted a serious flaw (now CVE-2025-46661) in IPW Systems’ Metazo software, affecting all versions through 8.1.3. This vulnerability
CVE-2024-53636 - Exploiting Arbitrary File Upload in Serosoft Academia SIS EagleR-1..118
A serious security vulnerability has been discovered in the Serosoft Academia Student Information System (SIS) EagleR-1..118. Identified as CVE-2024-53636, this flaw allows an attacker
CVE-2025-3928 - Commvault Web Server Webshell Vulnerability Explained (with Exploit Details)
Commvault is a popular data protection and information management platform, used by enterprises worldwide for backup and recovery. It offers a web-based interface that helps
CVE-2025-32432 - Remote Code Execution in Craft CMS – Deep Dive, Exploit, and Protection
Craft CMS is a popular and powerful content management system used by developers for custom websites and digital experiences. Its flexibility, plugin support, and intuitive
Episode
00:00:00
00:00:00