CVE-2025-42999 - SAP NetWeaver Visual Composer Metadata Uploader – Untrusted Deserialization Vulnerability Explained
CVE-2025-42999 is a newly discovered vulnerability in SAP NetWeaver Visual Composer (VC). This vulnerability lets a user with upload permissions—sometimes even an internal or
CVE-2025-32444 - Remote Code Execution in vLLM Mooncake Integration via Unsafe Pickle Serialization
A new security vulnerability, CVE-2025-32444, impacts certain versions of vLLM – a popular high-throughput and memory-efficient inference and serving engine for large language models (LLMs). This
CVE-2025-3928 - Commvault Web Server Webshell Vulnerability Explained (with Exploit Details)
Commvault is a popular data protection and information management platform, used by enterprises worldwide for backup and recovery. It offers a web-based interface that helps
CVE-2025-32432 - Remote Code Execution in Craft CMS – Deep Dive, Exploit, and Protection
Craft CMS is a popular and powerful content management system used by developers for custom websites and digital experiences. Its flexibility, plugin support, and intuitive
CVE-2025-46616 - Remote Code Execution in Quantum StorNext Web GUI API (Pre-7.2.4) — File Upload Exploit Guide
A newly identified vulnerability, CVE-2025-46616, puts users of Quantum StorNext’s Web GUI API (prior to 7.2.4) at risk of remote code execution
Episode
00:00:00
00:00:00