🔌 Allow us to introduce the new IDA Plugin Manager.
Now, with a few simple commands, you can access a modern, self-service plugin ecosystem. Discover and get discovered more easily.
https://hex-rays.com/blog/introducing-the-ida-plugin-manager
Genie: You have 3 wishes
Me: Can I just have -1 wish?
Genie: Okay, you have 4294967295L wishes
JNDI injection in DataEase DB2.
https://github.com/dataease/dataease/security/advisories/GHSA-88ph-3236-2m2h
A Spanish court orders Meta to pay €479M to 87 Spanish digital media outlets for unfair competition practices and infringement of EU data protection regulations (Reuters)
https://www.reuters.com/sustainability/boards-policy-regulation/spanish-court-orders-meta-pay-550-mln-digital-media-companies-2025-11-20/
http://www.techmeme.com/251120/p18#a251120p18
Reversing public #security advisories has been a lot of fun lately. Here's an exploit I've built for CVE-2025-9501 that potentially affects 1+ million #WordPress installations:
When Updates Backfire: RCE in Windows Update Health Tools https://research.eye.security/rce-windows-update-health-tools/