CVE-2022-38381 - How Attackers Bypass FortiADC WAF Filters with Malformed Requests
FortiADC is a popular Application Delivery Controller made by Fortinet, often used to balance the load and protect web applications. In 2022, a critical vulnerability—
CVE-2022-39950 - How a Simple Comment Can Hack FortiManager & FortiAnalyzer – Deep Dive, Exploit Demo, and Fix
Cross-Site Scripting (XSS) vulnerabilities keep popping up—even in big name security gear. If you use FortiManager or FortiAnalyzer, you should know about CVE-2022-39950, a
CVE-2022-43361 - XSS Vulnerability in Senayan Library Management System v9.4.2 (pop_chart.php) - In-depth Analysis and Exploitation
Cross-Site Scripting (XSS) vulnerabilities are still among the most common and dangerous problems in web applications today. CVE-2022-43361 is a classic example found in Senayan
CVE-2022-3803 - Cross-Site Scripting (XSS) in eolinker apinto-dashboard Exploited – Analysis and Demo
Earlier in 2022, a critical security issue was reported in the open-source API gateway management tool, eolinker apinto-dashboard. Having the identifier CVE-2022-3803, this vulnerability exposes
CVE-2022-31777 - Exploiting Stored XSS in Apache Spark UI through Malicious Log Messages
Apache Spark is one of the most popular open-source engines for distributed data processing. It’s used in everything from data analysis to machine learning,
Episode
00:00:00
00:00:00