CVE-2025-29770 - Denial of Service in vLLM Outlines Grammar Cache — How a Cache Bug Could Crash Your Inference Server
CVE-2025-29770 is a security vulnerability discovered in vLLM, a high-throughput, memory-efficient engine for running large language models (LLMs). The issue impacts any vLLM deployment that
CVE-2025-27018 - SQL Injection Vulnerability in Apache Airflow MySQL Provider – Details, Code Snippet, and Exploitation
A critical SQL Injection vulnerability, tracked as CVE-2025-27018, was discovered in the Apache Airflow MySQL Provider package. The flaw exists in the way the MySQL
CVE-2025-24799 - Critical SQL Injection in GLPI Inventory Endpoint – How Attackers Exploit and How to Stay Safe
GLPI is one of the world's most popular open-source asset and IT management systems. Many sysadmins and IT teams rely on it to
CVE-2025-2353 - Critical SQL Injection Vulnerability in Virtual Airlines Manager (VAM) up to 2.6.2
Published: June 2024
Summary
A critical vulnerability, CVE-2025-2353, was recently discovered in Virtual Airlines Manager (VAM) versions up to 2.6.2. This vulnerability allows
CVE-2023-52970 - Crashing MariaDB Servers via Item_direct_view_ref::derived_field_transformer_for_where – Analysis and Exploit
MariaDB is a popular open-source database server, known for reliability and used widely in web applications. But like any complex software, sometimes it stumbles onto
Episode
00:00:00
00:00:00