{"uuid": "693f78ad-a8cb-4b40-9b69-0589d4dc6dc4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48799", "type": "published-proof-of-concept", "source": "https://t.me/bhhub/847", "content": "Critical Vulnerabilities & API Exploits\n\n\u2728 CVE-2025-48799 Proof of Concept on GitHub  \nA new PoC for **CVE-2025-48799** has surfaced, highlighting potential exploitation vectors. While details are scarce, such early leaks often precede widespread attacks\u2014monitor patches closely. The repo suggests a serious flaw, possibly impacting enterprise systems. Read more  \n\n\u2728 REST API Serialization Attacks: A Hidden Threat  \nManipulating serialization formats (JSON/XML) can bypass API auth and trigger RCE. This technique exploits parsers\u2019 lax validation\u2014prioritize input sanitization and strict schema enforcement. A must-read for devs hardening microservices. Read more  \n\n\u2728 Microsoft\u2019s Physical Security Fail: PII Exposure  \nA researcher breached Microsoft\u2019s guest check-in system, exposing **employee/visitor PII** via flawed access controls. Real-world impact: social engineering, physical intrusions. Highlights risks in merging digital and physical security. Read more", "creation_timestamp": "2025-07-19T13:37:16.000000Z"}