03 March 2025 Show Notes 00:19:00 The OOB Read zi Introduced 00:16:55 Mixing up Public and Private Keys in OpenID Connect deployments 00:22:51 Nginx/Apache Path Confusion to Auth Bypass in PAN-OS [CVE-2025-0108] 00:31:50 Hacking High-Profile Bug Bounty Targets: Deep Dive into a Client-Side Chain 00:44:14 Uncovering Apple Vulnerabilities: diskarbitrationd and storagekitd Audit Part 3 00:48:48 GigaVulnerability: readout protection bypass on GigaDevice GD32 MCUs 00:56:57 Attempted Research in PHP Class Pollution