Heykuki News
Top
New
Best
Ask
Show
Jobs
Toggle theme
Login
Top
New
Best
Ask
Show
Jobs
241.
▲
ManageEngine vulnerability posed code injection risk for password management
(portswigger.net)
2 points
feross
4 years ago
discuss
242.
▲
Squiz Matrix CMS squashes admin account takeover bug
(portswigger.net)
2 points
feross
4 years ago
discuss
243.
▲
Critical command injection vulnerability discovered in Bitbucket Server and Data
(portswigger.net)
2 points
feross
4 years ago
discuss
244.
▲
Vulnerability in open source identity management system Free IPA could lead to
(portswigger.net)
2 points
feross
4 years ago
discuss
245.
▲
XSS in Gmail’s AMP For Email earns researcher $5k
(portswigger.net)
2 points
feross
4 years ago
discuss
246.
▲
ParseThru: HTTP parameter smuggling flaw uncovered in several Go applications
(portswigger.net)
2 points
feross
4 years ago
discuss
247.
▲
CompleteFTP path traversal flaw allowed attackers to delete server files
(portswigger.net)
2 points
feross
4 years ago
discuss
248.
▲
LDAP Account Manager bug poses unauthenticated remote code execution risk
(portswigger.net)
2 points
feross
4 years ago
discuss
249.
▲
Take threats against machine learning systems seriously, security firm warns
(portswigger.net)
2 points
feross
4 years ago
discuss
250.
▲
Spring Data MongoDB hit by another critical SpEL injection flaw
(portswigger.net)
2 points
feross
4 years ago
discuss
251.
▲
RubyGems trials 2FA-by-default in code repo’s latest security effort
(portswigger.net)
2 points
feross
4 years ago
discuss
252.
▲
Researcher defends Formidable in fight against ‘critical’ CVE assignment
(portswigger.net)
2 points
execveat
4 years ago
discuss
253.
▲
Patch released for cross-domain cookie leakage flaw in Guzzle
(portswigger.net)
2 points
feross
4 years ago
discuss
254.
▲
WordPress theme Jupiter patches critical privilege escalation flaw
(portswigger.net)
2 points
feross
4 years ago
discuss
255.
▲
UK government sits out bug bounty boom but welcomes vulnerability disclosure
(portswigger.net)
2 points
feross
4 years ago
discuss
256.
▲
NIST refreshes software supply chain risk management guidance
(portswigger.net)
2 points
feross
4 years ago
discuss
257.
▲
UK government calls for tougher protections against malicious mobile apps
(portswigger.net)
2 points
feross
4 years ago
discuss
258.
▲
Microsoft report unmasks at least six Russian nation-state actors
(portswigger.net)
2 points
feross
4 years ago
discuss
259.
▲
Student grades stored in Greek education platform UniverSIS could be manipulated
(portswigger.net)
2 points
feross
4 years ago
discuss
260.
▲
New XSS Vectors (Transition and SVG “Use”)
(portswigger.net)
2 points
Erliksu
4 years ago
discuss
261.
▲
Git security vulnerabilities prompt updates
(portswigger.net)
2 points
carride
4 years ago
discuss
262.
▲
Internal AWS credentials swiped by researcher via SQL payload
(portswigger.net)
2 points
feross
4 years ago
discuss
263.
▲
Supply chain flaws in PHP package manager PEAR lay undiscovered for 15 years
(portswigger.net)
2 points
feross
4 years ago
discuss
264.
▲
Rust patches sneaky ReDoS bug
(portswigger.net)
2 points
feross
4 years ago
discuss
265.
▲
OpenSSL drops update addressing ‘high severity’ denial of service issue in
(portswigger.net)
2 points
feross
4 years ago
discuss
266.
▲
Node.js security: Parse Server remote code execution vulnerability resolved
(portswigger.net)
2 points
feross
4 years ago
discuss
267.
▲
Red Cross servers ‘were hacked via unpatched ManageEngine flaw’
(portswigger.net)
2 points
feross
4 years ago
discuss
268.
▲
Poisoned pipelines: Security researcher explores attack methods in CI
(portswigger.net)
2 points
feross
4 years ago
discuss
269.
▲
Nintendo Switch hacker sent behind bars, owes video game giant further $4.5m
(portswigger.net)
2 points
feross
4 years ago
discuss
270.
▲
Tool trio released to protect JavaScript applications from malicious NPM
(portswigger.net)
2 points
feross
4 years ago
discuss
More