CVE-2024-25082 - How a FontForge Vulnerability Lets Attackers Run Commands from Malicious Font Files
FontForge is a popular, open-source font editor used by designers and developers worldwide to edit and create fonts. Recently, a security vulnerability surfaced that could
CVE-2023-49114 - DLL Hijacking in Qognify VMS Client Viewer Lets Local Users Escalate Privileges
A new security hole, tracked as CVE-2023-49114, has been discovered in the Qognify VMS Client Viewer, specifically in versions 7.1 and above. This problem
CVE-2023-30996 - IBM Cognos Analytics Information Leakage Explained + Example Exploit Code
IBM Cognos Analytics is a powerful business intelligence platform used worldwide to help organizations visualize and analyze data. However, like many complex applications, Cognos Analytics
CVE-2024-21501 - File System Information Exposure in sanitize-html <2.12.1 – Exploit & Walkthrough
Published: June 2024
Severity: High
Affected Package: sanitize-html
Patched Version: 2.12.1 and above
Attacker Impact: File Path & Dependency Enumeration
References:
- GitHub
CVE-2024-21423 - Unpacking a Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
---
Introduction
On February 13, 2024, Microsoft publicly disclosed CVE-2024-21423—a new information disclosure vulnerability affecting Microsoft Edge (Chromium-based). This type of vulnerability is particularly
Episode
00:00:00
00:00:00