CVE-2025-24010: Vite JavaScript Framework's CORS and WebSocket Vulnerability Allows Arbitrary Requests and Information Disclosure
The Vite JavaScript frontend tooling framework recently faced a significant security vulnerability, namely CVE-2025-24010, which allowed arbitrary websites to send requests to the Vite'
CVE-2024-55591: Authentication Bypass Vulnerability in FortiOS and FortiProxy Leads to Super-Admin Privileges
A critical security vulnerability has recently been discovered, dubbed CVE-2024-55591, that affects FortiOS version 7.. through 7..16 and FortiProxy version 7.. through 7..19
CVE-2024-54151 - Unauthenticated Access to Directus APIs with Full Admin Privileges
Directus is a widely used real-time API and App dashboard designed to facilitate the management of SQL database content. A critical security vulnerability, identified as
CVE-2024-52318: Understanding the Incorrect Object Recycling and Reuse Vulnerability in Apache Tomcat and How to Keep Your System Secure
A new vulnerability, registered as CVE-2024-52318, has been discovered affecting a series of recent versions of the widely-used Apache Tomcat web server. In this article,
CVE-2024-52316: Unchecked Error Condition Vulnerability in Apache Tomcat Allowing User Authentication Bypass
A vulnerability has been discovered in Apache Tomcat, identified as CVE-2024-52316, that could potentially allow users to bypass the authentication process when a custom Jakarta
Episode
00:00:00
00:00:00