#pentesting

Articles tagged with #pentesting

'ShadowLeak' Attack Enables Data Theft in ChatGPT
Cybersecurity in Artificial Intelligence (AI) platforms has become a growing focus as these tools integrate more deeply into our personal and professional lives. Recently, a significant vulnerability
Sep 23, 20255 min read35
CVE-2025-53690: Remote Code Execution in Sitecore Platforms
Introduction Identified on September 3, 2025, CVE-2025-53690 is a critical flaw affecting multiple products within the Sitecore platform. The vulnerability consists of an untrusted data deserializatio
Sep 10, 20255 min read11
Do you really trust WhatsApp View Once?
WhatsApp's view once functionality was created to protect sensitive content, allowing the recipient to open a photo or video only once before the file is deleted. The proposal is simple: to offer an a
Sep 9, 20253 min read94
CVE-2025-31324: Remote Code Execution in SAP NetWeaver Visual Composer
Introduction CVE-2025-31324, published on April 24, 2025, on the NVD, is a critical flaw in the Metadata Uploader component of SAP NetWeaver Visual Composer. Initially identified by ReliaQuest on Apri
May 1, 20255 min read68
CVE-2025-32432: Deserialization in Craft CMS Allows RCE
Introduction Identified on April 7, 2025, and officially published on April 25, 2025, in the NVD, CVE-2025-32432 presents a critical threat to organizations using Craft CMS, a widely adopted content m
Apr 27, 20255 min read30