Spring Office Hours Podcast: S5E14 - Spec Driven Development with Simon Martinelli

Join Dan Vega and DaShaun Carter for the latest updates from the Spring Ecosystem. In this episode, Dan and DaShaun are joined by Java Champion, Vaadin Champion, and Oracle ACE Pro Simon Martinelli to talk about Spec-Driven Development. With AI reshaping how we write code, Simon makes the case th...

A Bootiful Podcast: Spring community legend and friend Simon Martinelli

Hi, Spring fans! Happy Thanksgiving from me, and I am sure the entire Spring team, to you! We are, it should be clear, oh so very grateful.. thankful.. for you, the community. This week it is my great pleasure to chat with Spring community legend Simon Martinelli...

Enhancing Deep Learning-Based Rotational-XOR Attacks on Lightweight Block Ciphers Simon32/64 and Simeck32/64

At CRYPTO 2019, Gohr pioneered neural cryptanalysis by introducing differential-based neural distinguishers to attack Speck32/64, establishing a novel paradigm combining deep learning with differential cryptanalysis.Since then, constructing neural distinguishers has become a significant approach ...

EUVD-2006-5153

Malware in sbrugna...

EUVD-2023-34912

Malicious code in bioql PyPI...

EUVD-2025-9835

Malicious code in bioql PyPI...

EUVD-2022-39087

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2023-24288

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Ubuntu Linux - A crafted save file can cause a buffer overrun in Simon Tatham's Portable Puzzle Collection CVE-2023-24288 Note that Nessus relies on the presenc...

Malicious code in @leaffm/leafconnect-simon-sinek (npm)

The package @leaffm/leafconnect-simon-sinek was found to contain malicious code...

Malicious code in @leaffm/leafconnect-b2b-simon-sinek (npm)

The package @leaffm/leafconnect-b2b-simon-sinek was found to contain malicious code...

MAL-2025-8416 Malicious code in @leaffm/leafconnect-simon-sinek (npm)

The package @leaffm/leafconnect-simon-sinek was found to contain malicious code...

MAL-2025-8409 Malicious code in @leaffm/leafconnect-b2b-simon-sinek (npm)

The package @leaffm/leafconnect-b2b-simon-sinek was found to contain malicious code...

USN-7567-1: ModSecurity vulnerabilities

Simon Studer discovered that ModSecurity incorrectly handled certain JSON objects. An attacker could possibly use this issue to cause a denial of service. CVE-2025-47947 It was discovered that ModSecurity incorrectly handled requests when parsing certain form data. An attacker could possibly use...

CVE-2023-30497

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Simon Chuang WP LINE Notify plugin = 1.4.4 versions...

A Bootiful Podcast: Java Champion, Tessl Devrel head, friend, Virtual JUG co-founder Simon Maple

Hi, Spring fans! In this episode, we catch up with Java Champion, Tessl Devrel head, Virtual JUG co-founder, and friend Simon Maple! This episode was recorded at the amazing ArcOfAI conference held in amazing Austin, TX!...

CVE-2025-32181

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Fast Simon Search, Filters & Merchandising for WooCommerce instantsearch-for-woocommerce allows Stored XSS.This issue affects Search, Filters & Merchandising for WooCommerce: from n/a through =...

CVE-2025-32181

CVE-2025-32181 refers to a Stored XSS in Search, Filters & Merchandising for WooCommerce (WordPress plugin: instantsearch for WooCommerce), with affected versions listed as up to 3.0.57. Root cause per the entry is Improper Neutralization of Input During Web Page Generation. Impact, as stated, is...

PT-2025-14963 · Woocommerce · Fast Simon Search

Name of the Vulnerable Software and Affected Versions: Fast Simon Search, Filters & Merchandising for WooCommerce versions 3.0.57 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Stored XSS...

Critical Update: CrushFTP Zero-Day Flaw Exploited in Targeted Attacks

Users of the CrushFTP enterprise file transfer software are being urged to update to the latest version following the discovery of a security flaw that has come under targeted exploitation in the wild. "CrushFTP v11 versions below 11.1 have a vulnerability where users can escape their VFS and...

simonasesores.es Improper Access Control vulnerability OBB-3825906

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...