CVE-2022-0271: Leaflet Maps Marker SQL Injection Exploit
BSG discovered CVE-2022-0271, a critical SQL injection in Leaflet Maps Marker WordPress plugin. Full vulnerability disclosure, PoC, and remediation steps.
Threat Landscape
CVE-2022-25854: Tagify npm Stored XSS Vulnerability
BSG researchers discovered a stored XSS vulnerability in @yaireo/tagify npm package. Full disclosure, PoC, and patch details inside.
Social Engineering: What It Is and How to Prevent It?
What is social engineering, and why does it occur? Types and examples of attacks and what steps should be taken to prevent them? Read more in our blog post.