Posts
2506
Following
574
Followers
1284
A drunken debugger

Heretek of Silent Signal
repeated
repeated

If you are wondering about the unpublished CVE-2024-49848... there is a PoC.

🔗 https://vulnerability.circl.lu/comment/23fd524b-475e-4b9f-8dc2-7b67f4cec409

0
5
0
As a paying subscriber I want to hide news stories without an identified author.
1
0
4
US Probes China-Founded Router Maker TP-Link on National Security Fears - Bloomberg

https://www.bloomberg.com/news/articles/2024-12-18/us-probes-china-founded-router-maker-on-national-security-fears

TP-Link about join the club of Huawei&Kaspersky

#frombsky
1
1
1
repeated

UK: “It’s still illegal to rip a CD you legally own to MP3!”

Also UK: “Hey, let’s exempt those AI guys from copyright law!”

FFS.

https://www.gov.uk/government/consultations/copyright-and-artificial-intelligence

5
17
0
repeated

Learn about XSS for XMAS!

We created a new MDN page about Cross-site scripting: https://developer.mozilla.org/en-US/docs/Web/Security/Attacks/XSS

0
2
0
repeated

Here is another challenge. This time I am quite sure that no text or marking needs to be blurred.
Do you know what this thing is? Can you name the exact part number or product name?

As always, explain your guess/deduction and hide it behind a CW to not spoil others.

3
1
0
Maybe it is my bad English/ears but I can't ignore hearing the name of Enno Rey instead of the track title :S

https://www.youtube.com/watch?v=0f_TbyIIPnc

#hardstyle
1
0
1
repeated

✧✦✶✷Catherine✷✶✦✧

game i would like to play: Factorio but you *only* do compliance paperwork

4
1
1
repeated

I am mildly amused that OpenAI telemetry rollout led to a classical Kubernetes control plane DoS.

In my experience DDoSing your own control plane is the #1 way people generate large failures in K8s. What are others?

1
3
0
[RSS] The Full Story of CVE-2024-6386: Remote Code Execution in WPML

https://blog.wpsec.com/the-full-story-of-cve-2024-6386-remote-code-execution-in-wpml/
0
0
0
repeated

Hey y'all,

the https://madweb.work/ Program Committee was just announced (featuring yours truly).
Please remember to submit your papers about web security by January 9th 2025. We are interested in research at the junction of web & browser security. More on the website :)

0
3
0
@Viss one of them must have cheated (probably the guy)
1
0
1
[RSS] Having Fun with Flare-on Using Time-Travel Debugging (TTD)

https://binary.ninja/2024/12/16/flareon-ttd.html
0
1
2
[RSS] Authentication Bypass Vulnerability in Philips IntelliSpace Cardiovascular

https://outurnate.com/authentication-bypass-vulnerability-in-philips-intellispace-cardiovascular
0
0
1
[RSS] X41 Audited Backstage

https://x41-dsec.de/security/research/job/news/2024/12/16/backstage-review-2024/

CVE-2024-45815 CVE-2024-45816 CVE-2024-46976
0
0
1
repeated
[RSS] Linternals: Exploring The mm Subsystem via mmap [0x01]

https://sam4k.com/linternals-exploring-the-mm-subsystem-part-1/
0
0
0
[RSS] Hacking Kerio Control via CVE-2024-52875: from CRLF Injection to 1-click RCE

https://karmainsecurity.com/hacking-kerio-control-via-cve-2024-52875
0
0
2
Show older