In January 2024, Sonar’s Vulnerability Research identified a new vulnerability in Jenkins that could allow an attacker to read the first few lines of arbitrary files on servers…
An in-depth look at CVE-2022-0492: a container escape vulnerability that does not require a specific authorization capability to be granted to be exploited.
Follina is a Microsoft Office vulnerability where the document uses the Word remote template feature to retrieve an HTML file from a remote web server, which in turn uses the ms-msdt MSProto
A quick overview of the recently discovered vulnerability. Learn how you can practice exploiting (and defending against) the local privilege escalation attack on the HTB platform!
CVE-2022-26923 is an Active Directory domain privilege escalation vulnerability that enables a privileged user to access the Domain Controller by abusing Active Directory Certificate Service
Approximately 25,227 CVEs were submitted in 2022. Our data looks at 99 of the most popular CVEs—based on the number of global searches each CVE generated.