The April 2025 Security Update Review

April 08, 2025 | Dustin Childs CONTINUE READING
CVE-2022-3236: Sophos Firewall User Portal and Web Admin Code Injection
Blog post

CVE-2022-3236: Sophos Firewall User Portal and Web Admin Code Injection

Riding the InfoRail to Exploit Ivanti Avalanche
Blog post

Riding the InfoRail to Exploit Ivanti Avalanche

Pwn2Own Vancouver 2022 - The Results
Blog post

Pwn2Own Vancouver 2022 - The Results

Pwn2Own Vancouver 2022 - The Schedule
Blog post

Pwn2Own Vancouver 2022 - The Schedule

Abusing Arbitrary File Deletes to Escalate Privilege and Other Great Tricks
Blog post

Abusing Arbitrary File Deletes to Escalate Privilege and Other Great Tricks

CVE-2022-21661: Exposing Database Info via WordPress SQL Injection
Blog post

CVE-2022-21661: Exposing Database Info via WordPress SQL Injection

Pwn2Own Vancouver Returns for the 15th Anniversary of the Contest
Blog post

Pwn2Own Vancouver Returns for the 15th Anniversary of the Contest

CVE-2021-28632 & CVE-2021-39840: Bypassing Locks in Adobe Reader
Blog post

CVE-2021-28632 & CVE-2021-39840: Bypassing Locks in Adobe Reader

CVE-2021-26084: Details on the Recently Exploited Atlassian Confluence OGNL Injection Bug
Blog post

CVE-2021-26084: Details on the Recently Exploited Atlassian Confluence OGNL Injection Bug

ProxyToken: An Authentication Bypass in Microsoft Exchange Server
Blog post

ProxyToken: An Authentication Bypass in Microsoft Exchange Server