HK
Heykuki News
Top
New
Best
Ask
Show
Jobs
Toggle theme
Top
New
Best
Ask
Show
Jobs
Request
151.
▲
Compromised Nx Console
github.com/nrwl
discuss
a month ago
0xedb
3 points
152.
▲
n8n RCE via Expression Injection
github.com/n8n-io
discuss
6 months ago
maxmax_
3 points
153.
▲
(Authenticated) Remote Code Execution Possible in Web Interface 5.5
github.com/pi-hole
discuss
5 years ago
sbmthakur
3 points
154.
▲
Kubernetes Secret Extraction via ArgoCD ServerSideDiff
github.com/argoproj
discuss
2 months ago
milkglass
2 points
155.
▲
A zip bomb can be used to execute a DoS against the aiohttp server
github.com/aio-libs
discuss
6 months ago
Wingy
2 points
156.
▲
Doyensec – Info Leak in Squid Proxy
github.com/squid-cache
discuss
8 months ago
tony-ds
2 points
157.
▲
Visual Studio Code: Remote Code Execution
github.com/google
discuss
4 years ago
robin_reala
2 points
158.
▲
Two remotely exploitable Linux kernel bugs fixed in the Bluetooth stack
github.com/google
discuss
4 years ago
frankjr
2 points
159.
▲
macOS is vulnerable to SpectreRSB/ret2spec
github.com/google
discuss
6 years ago
mdriley
2 points
160.
▲
Improper HMAC Signature Verification in auth0/node-jws
github.com/auth0
discuss
6 months ago
gearnode
1 points
161.
▲
Remote code execution in Linux kernel Bluetooth stack. Affected since 2013
github.com/google
discuss
4 years ago
lknik
1 points
162.
▲
Linux Kernel: UAF in Bluetooth L2CAP Handshake · Advisory
github.com/google
discuss
4 years ago
transpute
1 points
163.
▲
(Pwn2Own Tokyo 2019) Netgear R6700v3 LAN RCE write-up and exploit
github.com/pedrib
discuss
6 years ago
redshark1802
1 points
164.
▲
RCE Vulnerability in React and Next.js
github.com/vercel
259 comments
7 months ago
rayhaanj
628 points
165.
▲
Unauthorized gem takeover for some gems
github.com/rubygems
76 comments
4 years ago
mooreds
239 points
166.
▲
HTTP/2 Denial of Service Advisory
github.com/Netflix
39 comments
7 years ago
rdli
191 points
167.
▲
Linux and FreeBSD: Multiple TCP-based remote denial of service vulnerabilities
github.com/Netflix
8 comments
7 years ago
punnerud
83 points
168.
▲
Authorization Bypass in Next.js Middleware
github.com/vercel
discuss
a year ago
grant0417
8 points
169.
▲
Unauthorized image of Kong Ingress Controller v3.4.0
github.com/Kong
discuss
a year ago
taniks1618
8 points
170.
▲
Hash Denial-of-Service Attack in Multiple QUIC Implementations
github.com/ncc-pbottine
2 comments
a year ago
weinzierl
4 points
171.
▲
Linux and FreeBSD Kernel: Multiple TCP-Based Remote DoS Vulnerabilities
github.com/Netflix
1 comment
7 years ago
mwuertinger
3 points
172.
▲
A uint32 overflow in libblkid allows MBR destruction via crafted disk
github.com/util-linux
discuss
5 days ago
ringzeropirate
3 points
173.
▲
Next.js – Server-side request forgery in applications using WebSocket upgrades
github.com/vercel
discuss
a month ago
reimertz
3 points
174.
▲
Technical Advisory – Hash DoS Attack in Multiple QUIC Implementations
github.com/ncc-pbottine
discuss
a year ago
simmervigor
2 points
175.
▲
Malicious script injected into Amazon Q Developer for Visual Studio
github.com/aws
1 comment
a year ago
zX41ZdbW
1 points
176.
▲
CVE-2024-38355: socket.io Vulnerability
github.com/socketio
1 comment
2 years ago
lijunhao
1 points
177.
▲
Open WebUI: Jupyter code execution works despite ENABLE_CODE_EXECUTION=false
github.com/open-webui
discuss
a month ago
logickkk1
1 points
178.
▲
Malicious script injected into Amazon Q Developer for VS Code
github.com/aws
discuss
a year ago
hubraumhugo
1 points
179.
▲
CRI-O container escape and arbitrary code execution as root
github.com/cri-o
discuss
4 years ago
caaqil
1 points
180.
▲
About Maintainer Security Advisories
help.github.com
discuss
7 years ago
edmorley
1 points
More