appsec.fyi · Sources

sentinelone.com

35 curated AppSec resources from sentinelone.com across 14 topics on appsec.fyi.

sentinelone.com

Resources curated from this publisher and indexed across appsec.fyi topic pages. Last item added: 2026-04-22.

Python 5 SSRF 5 CSRF 4 SQLi 4 Deser 3 JWT 3 RCE 2 Supply Chain 2 XXE 2 AuthN 1 IDOR 1 Recon 1 Secrets 1 XSS 1
Date Added Resource Excerpt
2026-04-22 2026Hypersonic Supply Chain Attacks: One Solution That Didn't Need to Know the PayloadSupply ChainHypersonic Supply Chain Attacks: One Solution That Didn't Need to Know the Payload https://ift.tt/bKtc9JB
2026-04-22 2026CVE-2026-32597: PyJWT Information Disclosure VulnerabilityJWTCVE-2026-32597: PyJWT Information Disclosure Vulnerability
2026-04-22 2026CVE-2026-2092: Keycloak Auth Bypass VulnerabilityAuthNCVE-2026-2092: Keycloak Auth Bypass Vulnerability
2026-04-22 2026CVE-2025-68454: Craft CMS Twig SSTI RCE VulnerabilityRCECVE-2025-68454: Craft CMS Twig SSTI RCE Vulnerability
2026-04-22 2026CVE-2025-12821: WordPress NewsBlogger CSRF Allowing RCECSRFCVE-2025-12821: WordPress NewsBlogger CSRF Allowing RCE
2026-04-22 2026CVE-2026-22607: Fickling Python RCE VulnerabilityPythonCVE-2026-22607: Fickling Python RCE Vulnerability
2026-04-22 2026CVE-2026-21226: Azure Core Python Library RCE VulnerabilityPythonCVE-2026-21226: Azure Core Python Library RCE Vulnerability
2026-04-19 2026CVE-2025-45768: PyJWT Information Disclosure VulnerabilityJWTCVE-2025-45768: PyJWT Information Disclosure Vulnerability
2026-04-19 2026CVE-2025-9611: Microsoft Playwright MCP Server CSRF FlawCSRFCVE-2025-9611: Microsoft Playwright MCP Server CSRF Flaw
2026-04-19 2026CVE-2025-23797: WP Options Editor CSRF VulnerabilityCSRFCVE-2025-23797: WP Options Editor CSRF Vulnerability
2026-04-17 20269 Attack Surface Monitoring Tools in 2026 (SentinelOne)Recon9 Attack Surface Monitoring Tools in 2026 (SentinelOne)
2026-04-17 2026Securing the Software Supply Chain: How SentinelOne's AI EDR Autonomously Blocked the CPU-Z Watering Hole Cyber AttackSupply ChainSecuring the Software Supply Chain: How SentinelOne's AI EDR Autonomously Blocked the CPU-Z Watering Hole Cyber Attack https://ift.tt/FjnocJR
2026-04-11 2026CVE-2024-33663: Python-jose Algorithm ConfusionJWTCVE-2024-33663: Python-jose Algorithm Confusion
2026-04-10 2026CVE-2025-56005: PLY RCE VulnerabilityPythonCVE-2025-56005: PLY RCE Vulnerability
2026-04-10 2026Best Secret Scanning Tools For 2026SecretsBest Secret Scanning Tools For 2026
2026-04-10 2026CVE-2026-26116: SQL Server SQL InjectionSQLiCVE-2026-26116: SQL Server SQL Injection
2026-04-10 2026Protecting Against the Critical React2Shell RCE ExposureRCEProtecting Against the Critical React2Shell RCE Exposure
2026-04-09 2026WordPress Webmention Plugin SSRF (CVE-2026-0688)SSRFWordPress Webmention Plugin SSRF (CVE-2026-0688)
2026-04-09 2026CVE-2026-3125: OpenNext Cloudflare SSRF via Path Normalization BypassSSRFCVE-2026-3125: OpenNext Cloudflare SSRF via Path Normalization Bypass
2026-04-06 2026CVE-2025-12305: Shiyi-blog RCE via DeserializationDeserCVE-2025-12305: Shiyi-blog RCE via Deserialization
2026-04-06 2026CVE-2025-34153: Hyland OnBase RCE via DeserializationDeserCVE-2025-34153: Hyland OnBase RCE via Deserialization
2026-04-06 2026CVE-2025-42928: SAP jConnect RCE via DeserializationDeserCVE-2025-42928: SAP jConnect RCE via Deserialization
2026-04-06 2026CVE-2026-33873: Langflow Agentic Assistant RCE VulnerabilityPythonCVE-2026-33873: Langflow Agentic Assistant RCE Vulnerability
2026-04-06 2026CVE-2026-34519: AIOHTTP XSS VulnerabilityPythonCVE-2026-34519: AIOHTTP XSS Vulnerability
2026-04-06 2026CVE-2026-27697: Basercms SQLi VulnerabilitySQLiCVE-2026-27697: Basercms SQLi Vulnerability
2026-04-06 2026CVE-2026-5197: Student Membership System SQLi VulnerabilitySQLiCVE-2026-5197: Student Membership System SQLi Vulnerability
2026-04-06 2026CVE-2025-11035: Jinher OA XXE VulnerabilityXXECVE-2025-11035: Jinher OA XXE Vulnerability
2026-04-06 2026CVE-2025-54254: Adobe Experience Manager Forms XXE VulnerabilityXXECVE-2025-54254: Adobe Experience Manager Forms XXE Vulnerability
2026-04-06 2026CVE-2026-5417: Dataease SQLbot SSRF VulnerabilitySSRFCVE-2026-5417: Dataease SQLbot SSRF Vulnerability
2026-04-06 2026CVE-2026-34740: Wwbn Avideo SSRF VulnerabilitySSRFCVE-2026-34740: Wwbn Avideo SSRF Vulnerability
2026-04-06 2026CVE-2026-34394: Wwbn Avideo CSRF VulnerabilityCSRFCVE-2026-34394: Wwbn Avideo CSRF Vulnerability
2026-04-06 2026CVE-2026-32629: phpMyFAQ XSS VulnerabilityXSSCVE-2026-32629: phpMyFAQ XSS Vulnerability
2026-04-06 2026CVE-2026-33030: Nginx UI Authorization BypassIDORCVE-2026-33030: Nginx UI Authorization Bypass
2026-04-03 20267 Types of SQL Injection Attacks & How to Prevent ThemSQLi7 Types of SQL Injection Attacks & How to Prevent Them
2026-03-02 2026CVE-2026-27829: Astro Framework SSRF VulnerabilitySSRFCVE-2026-27829 is a server-side request forgery vulnerability in Astro web framework. Learn about its impact, affected versions, and mitigation methods.