CVE-2025-22604 - Command Injection Vulnerability in Cacti SNMP Disk IO Parsing Explained
Cacti is a popular open-source network monitoring and graphing solution. On June 2025, a critical security flaw was reported that directly affects how Cacti processes
CVE-2024-11931 - Exfiltrating GitLab Protected CI Variables via CI Lint (A Simple Guide With Exploit Details)
In February 2024, a critical vulnerability (CVE-2024-11931) was found affecting multiple versions of GitLab Community Edition (CE) and Enterprise Edition (EE). If you care about
CVE-2023-27112 - SQL Injection in pearProjectApi v2.8.10 (project.php `projectCode` Parameter) Explored
In early 2023, a serious vulnerability was discovered in the popular open-source tool pearProjectApi, version 2.8.10. This post dives into CVE-2023-27112, an SQL
CVE-2023-27113 - SQL Injection in pearProjectApi v2.8.10 via organizationCode (project.php) – A Deep Dive
In early 2023, a critical SQL injection vulnerability was discovered in the popular PHP project management tool, pearProjectApi (version 2.8.10). Tracked as CVE-2023-27113,
CVE-2025-24011 - Information Disclosure in Umbraco CMS UserExistance via API Timing Attack
In June 2025, a new vulnerability has been disclosed for the Umbraco .NET content management system (CMS), tracked as CVE-2025-24011. This issue affects all releases
Episode
00:00:00
00:00:00