CVE-2025-0376 - Serious XSS Vulnerability in GitLab (13.3 to 17.8.1) and How It Can Be Exploited
A critical Cross-Site Scripting (XSS) vulnerability was discovered in GitLab CE/EE (Community and Enterprise Edition). This flaw, tracked as CVE-2025-0376, lets an attacker run
CVE-2024-10322 - How Brizy – Page Builder Plugin for WordPress Was Vulnerable to Authenticated SVG XSS
---
If you use WordPress to build sites, you may have heard of Brizy – Page Builder, a popular plugin used on more than 90,000
CVE-2024-11831 - Critical XSS Vulnerability in serialize-javascript NPM Library
---
A serious security flaw has been uncovered in the popular serialize-javascript npm package. Tracked as CVE-2024-11831, this vulnerability has wide-reaching consequences for web applications
CVE-2024-13440 - Critical SQL Injection in Super Store Finder WordPress Plugin (Up to v7.) — How It Works, Exploit Details & Code Example
CVE-2024-13440 is a newly identified vulnerability found in the popular Super Store Finder plugin for WordPress. If you’re running any version up to 7.
CVE-2025-0169 - Exploiting Stored Cross-Site Scripting (XSS) in DWT - Directory & Listing WordPress Theme (<= 3.3.4)
The web is full of themes and plugins that make WordPress shine, but sometimes, a simple oversight in code can lead to serious security holes.
Episode
00:00:00
00:00:00