HK
Heykuki News
Top
New
Best
Ask
Show
Jobs
Toggle theme
Top
New
Best
Ask
Show
Jobs
Request
241.
▲
ManageEngine vulnerability posed code injection risk for password management
portswigger.net
discuss
4 years ago
feross
2 points
242.
▲
Squiz Matrix CMS squashes admin account takeover bug
portswigger.net
discuss
4 years ago
feross
2 points
243.
▲
Critical command injection vulnerability discovered in Bitbucket Server and Data
portswigger.net
discuss
4 years ago
feross
2 points
244.
▲
Vulnerability in open source identity management system Free IPA could lead to
portswigger.net
discuss
4 years ago
feross
2 points
245.
▲
XSS in Gmail’s AMP For Email earns researcher $5k
portswigger.net
discuss
4 years ago
feross
2 points
246.
▲
ParseThru: HTTP parameter smuggling flaw uncovered in several Go applications
portswigger.net
discuss
4 years ago
feross
2 points
247.
▲
CompleteFTP path traversal flaw allowed attackers to delete server files
portswigger.net
discuss
4 years ago
feross
2 points
248.
▲
LDAP Account Manager bug poses unauthenticated remote code execution risk
portswigger.net
discuss
4 years ago
feross
2 points
249.
▲
Take threats against machine learning systems seriously, security firm warns
portswigger.net
discuss
4 years ago
feross
2 points
250.
▲
Spring Data MongoDB hit by another critical SpEL injection flaw
portswigger.net
discuss
4 years ago
feross
2 points
251.
▲
RubyGems trials 2FA-by-default in code repo’s latest security effort
portswigger.net
discuss
4 years ago
feross
2 points
252.
▲
Researcher defends Formidable in fight against ‘critical’ CVE assignment
portswigger.net
discuss
4 years ago
execveat
2 points
253.
▲
Patch released for cross-domain cookie leakage flaw in Guzzle
portswigger.net
discuss
4 years ago
feross
2 points
254.
▲
WordPress theme Jupiter patches critical privilege escalation flaw
portswigger.net
discuss
4 years ago
feross
2 points
255.
▲
UK government sits out bug bounty boom but welcomes vulnerability disclosure
portswigger.net
discuss
4 years ago
feross
2 points
256.
▲
NIST refreshes software supply chain risk management guidance
portswigger.net
discuss
4 years ago
feross
2 points
257.
▲
UK government calls for tougher protections against malicious mobile apps
portswigger.net
discuss
4 years ago
feross
2 points
258.
▲
Microsoft report unmasks at least six Russian nation-state actors
portswigger.net
discuss
4 years ago
feross
2 points
259.
▲
Student grades stored in Greek education platform UniverSIS could be manipulated
portswigger.net
discuss
4 years ago
feross
2 points
260.
▲
New XSS Vectors (Transition and SVG “Use”)
portswigger.net
discuss
4 years ago
Erliksu
2 points
261.
▲
Git security vulnerabilities prompt updates
portswigger.net
discuss
4 years ago
carride
2 points
262.
▲
Internal AWS credentials swiped by researcher via SQL payload
portswigger.net
discuss
4 years ago
feross
2 points
263.
▲
Supply chain flaws in PHP package manager PEAR lay undiscovered for 15 years
portswigger.net
discuss
4 years ago
feross
2 points
264.
▲
Rust patches sneaky ReDoS bug
portswigger.net
discuss
4 years ago
feross
2 points
265.
▲
OpenSSL drops update addressing ‘high severity’ denial of service issue in
portswigger.net
discuss
4 years ago
feross
2 points
266.
▲
Node.js security: Parse Server remote code execution vulnerability resolved
portswigger.net
discuss
4 years ago
feross
2 points
267.
▲
Red Cross servers ‘were hacked via unpatched ManageEngine flaw’
portswigger.net
discuss
4 years ago
feross
2 points
268.
▲
Poisoned pipelines: Security researcher explores attack methods in CI
portswigger.net
discuss
4 years ago
feross
2 points
269.
▲
Nintendo Switch hacker sent behind bars, owes video game giant further $4.5m
portswigger.net
discuss
4 years ago
feross
2 points
270.
▲
Tool trio released to protect JavaScript applications from malicious NPM
portswigger.net
discuss
4 years ago
feross
2 points
More