CVE-2025-59775 - Dangerous SSRF Flaw in Apache HTTP Server on Windows Can Leak NTLM Hashes
A new critical vulnerability has been identified in the popular Apache HTTP Server software on Windows systems. Tracked as CVE-2025-59775, this issue opens the door
CVE-2025-66516 - Critical XXE Vulnerability in Apache Tika Core, PDF Module, and Parsers
A major security flaw has been found in Apache Tika affecting its tika-core (1.13-3.2.1), tika-pdf-module (2..-3.2.1), and tika-parsers (1.
CVE-2025-11933 - How Improper Input Validation in wolfSSL’s TLS 1.3 CKS Extension Can Cause DoS
A new vulnerability, CVE-2025-11933, has been discovered in wolfSSL up to version 5.8.2. This issue affects the popular security library on multiple platforms,
CVE-2025-64660 - Remote Code Execution in GitHub Copilot and VS Code Due to Improper Access Control
In early 2025, a serious security vulnerability, CVE-2025-64660, was discovered impacting GitHub Copilot and Visual Studio Code (VS Code). This issue centers on *improper access
CVE-2025-11001 - 7-Zip ZIP File Directory Traversal RCE Explained (with Exploit Details)
In early 2025, a new critical vulnerability was identified in the widely used 7-Zip compression software. Tracked as CVE-2025-11001 (formerly ZDI-CAN-26753), this flaw allows an
Episode
00:00:00
00:00:00