Home OffSec
  • Pricing
Research & Tutorials | OffSec
Blog

/

Research & Tutorials

Research & Tutorials

OffSec experts share cutting-edge vulnerability research, tool reviews, tutorials, virtual lab and content walkthroughs.

Jul 31, 2025

1 min read

CVE-2025-30208 – Vite Arbitrary File Read via @fs Path Traversal Bypass

Discover CVE-2025-30208, a critical arbitrary file read vulnerability in the Vite development server. Learn how remote attackers exploit @fs URL handling to access sensitive files.

Read more
CVE-2025-27136 – LocalS3 CreateBucketConfiguration Endpoint XXE Injection

Research & Tutorials

CVE-2025-27136 – LocalS3 CreateBucketConfiguration Endpoint XXE Injection

Discover how CVE-2025-27136, a critical XXE vulnerability in LocalS3’s CreateBucketConfiguration endpoint, can be exploited to access sensitive files. Learn how the flaw works and how to mitigate it.

Jul 24, 2025

2 min read

CVE-2024-12029 – InvokeAI Deserialization of Untrusted Data vulnerability

Research & Tutorials

CVE-2024-12029 – InvokeAI Deserialization of Untrusted Data vulnerability

CVE-2024-12029: A critical deserialization vulnerability in InvokeAI’s /api/v2/models/install endpoint allows remote code execution via malicious model files. Exploit risk for AI art servers.

Jul 17, 2025

3 min read

What is Phishing? Introduction to Phishing Demo (for Beginners)

Research & Tutorials

What is Phishing? Introduction to Phishing Demo (for Beginners)

Learn how phishing attacks work and how to spot them. Watch OffSec’s animated video to protect yourself from scams, spoofed sites, and social engineering.

Jul 15, 2025

2 min read

CVE-2025-27636 – Remote Code Execution in Apache Camel via Case-Sensitive Header Filtering Bypass

Research & Tutorials

CVE-2025-27636 – Remote Code Execution in Apache Camel via Case-Sensitive Header Filtering Bypass

Discover the critical Apache Camel vulnerability (CVE-2025-27636) that allows remote code execution via case-sensitive HTTP header manipulation in the exec component. Learn how attackers exploit this flaw and how to mitigate it.

Jul 10, 2025

2 min read

CVE-2025-29306 – Unauthenticated Remote Code Execution in FoxCMS v1.2.5 via Unserialize Injection

Research & Tutorials

CVE-2025-29306 – Unauthenticated Remote Code Execution in FoxCMS v1.2.5 via Unserialize Injection

Discover details about CVE-2025-29306, a critical RCE vulnerability in FoxCMS 1.2.5. Learn how unsafe use of PHP’s unserialize() function enables remote attackers to execute arbitrary system commands.

Jul 3, 2025

2 min read

CVE-2024-39914 – Unauthenticated Command Injection in FOG Project’s export.php

Research & Tutorials

CVE-2024-39914 – Unauthenticated Command Injection in FOG Project’s export.php

Discover details about CVE-2024-39914, a critical unauthenticated command injection vulnerability in FOG Project ≤ 1.5.10.34. Learn how attackers can exploit export.php to execute system commands or deploy persistent webshells.

Jun 26, 2025

2 min read

CVE-2025-3248 – Unauthenticated Remote Code Execution in Langflow via Insecure Python exec Usage

Research & Tutorials

CVE-2025-3248 – Unauthenticated Remote Code Execution in Langflow via Insecure Python exec Usage

CVE-2025-3248 is a critical RCE vulnerability in Langflow that allows unauthenticated attackers to execute arbitrary Python code via unsanitized input to exec(). Learn how it works and how to protect your system.

Jun 18, 2025

2 min read

CVE-2024-21683 – Authenticated RCE via “Add a New Language” in Atlassian Confluence

Research & Tutorials

CVE-2024-21683 – Authenticated RCE via “Add a New Language” in Atlassian Confluence

Critical RCE vulnerability (CVE-2024-21683) in Atlassian Confluence Data Center and Server (v5.2–8.9.0) allows authenticated users to execute arbitrary code via malicious code macros.

Jun 12, 2025

1 min read

CVE‑2025‑49113 – Post‑Auth Remote Code Execution in Roundcube via PHP Object Deserialization

Research & Tutorials

CVE‑2025‑49113 – Post‑Auth Remote Code Execution in Roundcube via PHP Object Deserialization

A critical RCE vulnerability (CVSS 9.9) in Roundcube Webmail (

Jun 12, 2025

3 min read

CVE-2025-24893 – Unauthenticated Remote Code Execution in XWiki via SolrSearch Macro

Research & Tutorials

CVE-2025-24893 – Unauthenticated Remote Code Execution in XWiki via SolrSearch Macro

An RCE vulnerability in XWiki was found allowing unauthenticated attackers to execute arbitrary Groovy code remotely without authentication or prior access.

Jun 5, 2025

2 min read

CVE-2025-0655 – Remote Code Execution in D-Tale via Unprotected Custom Filters

Research & Tutorials

CVE-2025-0655 – Remote Code Execution in D-Tale via Unprotected Custom Filters

A critical remote code execution (RCE) vulnerability in the D-Tale data visualization tool was identified which allowed attackers to execute arbitrary system exams, abusing an exposed API endpoint.

May 29, 2025

2 min read

CVE-2024-46986 – Arbitrary File Write in Camaleon CMS Leading to RCE

Research & Tutorials

CVE-2024-46986 – Arbitrary File Write in Camaleon CMS Leading to RCE

A vulnerability was discovered in Camaleon CMS authenticating attackers to write files on the file system which enabled them to execut remote code under certain conditions.

May 22, 2025

2 min read

Showing 1 - 13 of 60 entries

Join the OffSec Community!

Our community members connect, communicate and collaborate on all things cybersecurity.

By submitting this form, I agree to the processing of my personal data by OffSec as described in the Privacy Policy.