CVE-2022-40840 - XSS Vulnerability in ndk design NdkAdvancedCustomizationFields 3.5. via createPdf.php
In September 2022, a critical Cross-Site Scripting (XSS) vulnerability was discovered in the plugin NdkAdvancedCustomizationFields version 3.5., developed by ndk design. This vulnerability is
CVE-2022-38373 - Exploiting XSS in FortiDeceptor Management Interface – A Deep Dive
FortiDeceptor is a well-known deception-based security solution from Fortinet. But in 2022, a significant web application vulnerability was discovered that highlighted a weakness in how
CVE-2022-43982 - How XSS Sneaked Into Apache Airflow’s “Trigger DAG with Config” Screen
With Apache Airflow powering complex data pipelines for thousands of companies, any security flaw in it can ripple across the data world. CVE-2022-43982 is a
CVE-2022-38381 - How Attackers Bypass FortiADC WAF Filters with Malformed Requests
FortiADC is a popular Application Delivery Controller made by Fortinet, often used to balance the load and protect web applications. In 2022, a critical vulnerability—
CVE-2022-39950 - How a Simple Comment Can Hack FortiManager & FortiAnalyzer – Deep Dive, Exploit Demo, and Fix
Cross-Site Scripting (XSS) vulnerabilities keep popping up—even in big name security gear. If you use FortiManager or FortiAnalyzer, you should know about CVE-2022-39950, a
Episode
00:00:00
00:00:00