Technical Tip: How does Lacework FortiCNAPP Protec...

srubin · 12-03-2025

Description This article describes a Remote Code Execution (RCE) vulnerability in React (CVE-2025-55182) and Next.js (CVE-2025-66478) that allows an unauthenticated attacker to craft a malicious HTTP request to achieve remote code execution. The vuln...

srubin · 11-06-2025

Description This article explains three high-severity vulnerabilities identified in the runc library. On November 5th and 6th, 2025, three high-severity CVEs (CVE-2025-31133, CVE-2025-52565, and CVE-2025-52881) were identified affecting the low-level...

srubin · 10-12-2025

Description This article explains a large supply chain attack campaign on NPM packages dubbed the 'Shai-Hulud attack'. Between September 8th, 2025 and September 18th, 2025, a large supply chain attack campaign was discovered that targeted 500+ npm pa...

srubin · 10-10-2025

Description This article explains a critical Remote Code Execution (RCE) vulnerability, CVE-2025-49844, which has been identified in Redis. On October 5th, a critical security vulnerability affecting all Redis versions was uncovered, allowing an atta...

srubin · 06-18-2025

Description This article explains a critical remote authentication bypass vulnerability, CVE-2025-49825, that has been identified in Teleport. On June 5th, the vendor uncovered a critical security vulnerability affecting all Teleport versions, allowi...

User Statistics

User Activity