Discovery of two vulnerabilities (CVE-2024-34065) in Strapi, an open source content management system. In this post we explain how these vulnerabilities, if chained together, allow authentication to be bypassed.

Discovery of a new gadget chain in Laravel.

One month ago, we launched a development challenge. Here come the results.

Contribute to IRMA and enter for your chance to win a free ticket to Amsterdam to attend the HITB security conference.