Weekly Report: New Hacking Techniques and Critical CVEs 19 Aug – 25 Aug, 2025

August 26, 2025August 27, 2025

The week of August 19–25, 2025, witnessed a surge in high-severity exploits and advanced persistent threat campaigns targeting critical enterprise infrastructure. Notable developments include the active exploitation of CVE-2025-8088 in WinRAR, deployment of DripDropper malware via Apache ActiveMQ vulnerabilities, and the global Warlock ransomware campaign leveraging SharePoint vulnerabilities. Concurrently, Arch Linux endured an ongoing DDoS… Read More »Weekly Report: New Hacking Techniques and Critical CVEs 19 Aug – 25 Aug, 2025

CVE-2025-43712: JHipster Platform Privilege Escalation Vulnerability Discovered by FireCompass Research, Added to NIST

July 31, 2025July 31, 2025

Product Name: JHipster Platform Vulnerability: Privilege Escalation via Response Manipulation Vulnerable Versions: Up to 8.9.0 CVE: CVE-2025-43712 Discovered by: Hritik Godara, FireCompass Research Team Researchers from the FireCompass Security Team discovered a privilege escalation vulnerability in the JHipster Platform (up to v8.9.0). The issue was identified in how the application processes authentication responses—specifically, improper server-side validation of user roles… Read More »CVE-2025-43712: JHipster Platform Privilege Escalation Vulnerability Discovered by FireCompass Research, Added to NIST

Privilege Escalation

Weekly Report: New Hacking Techniques and Critical CVEs 19 Aug – 25 Aug, 2025

CVE-2025-43712: JHipster Platform Privilege Escalation Vulnerability Discovered by FireCompass Research, Added to NIST

Use Cases

Technology

About

Partner

Resources