EUVD-2025-3502

Malicious code in bioql PyPI...

PT-2025-5167 · Unknown · Chris Roberts Annie

Name of the Vulnerable Software and Affected Versions: Chris Roberts Annie versions prior to 2.1.1 Description: The issue is related to a Cross-Site Request Forgery CSRF problem, which allows for Cross-Site Request Forgery. This means an attacker can trick a user into performing unintended action...

CVE-2023-31079 WordPress Tippy Plugin <= 6.2.1 is vulnerable to Cross Site Scripting (XSS)

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Chris Roberts Tippy plugin = 6.2.1 versions...

CVE-2023-31079

CVE-2023-31079 affects the WordPress Tippy plugin 6.2.1 and earlier (

MITRE Madness: A Guide to Weathering the Upcoming Vendor Positioning Storm

April is usually a whirlwind month for the cybersecurity industry as it coincides with the release of the highly regarded and influential MITRE ATT&CK test results. The ATT&CK test measures cybersecurity platforms' abilities to detect and react to emulated, multistep attacks that can be used as a...

[Webinar] Oy Vey, We Hired a Large, Hairy Hacker…

It's not every day that one of the best-known independent cybersecurity individuals joins a cybersecurity company. The two are generally on opposite sides of the coin, with little crossover. After all, they're usually concerned with different parts of the cybersecurity puzzle – one providing...

[Webinar] Oy Vey, We Hired a Large, Hairy Hacker…

It's not every day that one of the best-known independent cybersecurity individuals joins a cybersecurity company. The two are generally on opposite sides of the coin, with little crossover. After all, they're usually concerned with different parts of the cybersecurity puzzle – one providing...