CVE-2024-11182 also seems like a stored XSS: "attacker can send a specially crafted HTML e-mail message with JavaScript in an img tag" - The '90s called and they want their webmail bugs back!!

RE: https://mastodon.social/@cisakevtracker/114535806650652126

I found that CVE-2024-27443 doesn't qualify for XSS Reflections as it seems to be a stored XSS. Pretty neat vuln though!

https://github.com/v-p-b/xss-reflections

RE: https://mastodon.social/@cisakevtracker/114535804613431399

I have been following the INFOSEC industry and am ready to begin my startup. Any investors here interested? Here's my business plan.

[RSS] Security Bulletin: IBM i is vulnerable to a machine-in-the-middle attack due to mishandling error codes when verifying the host key by OpenSSH. [CVE-2025-26465]

https://www.ibm.com/support/pages/node/7233399?myns=swgother&mynp=OCSWG60&mynp=OCSSTS2D&mynp=OCSS9QQS&mynp=OCSSKWKM&mynp=OCSSC5L9&mynp=OCSSB23CE&mync=A&cm_sp=swgother-_-OCSWG60-OCSSTS2D-OCSS9QQS-OCSSKWKM-OCSSC5L9-OCSSB23CE-_-A

#IBMi

[RSS] Security Bulletin: IBM i is vulnerable to a privilege escalation vulnerability in IBM TCP/IP Connectivity Utilities for i [CVE-2025-33103].

https://www.ibm.com/support/pages/node/7233799?myns=swgother&mynp=OCSWG60&mynp=OCSSKWKM&mynp=OCSSC5L9&mynp=OCSSTS2D&mynp=OCSS9QQS&mynp=OCSSB23CE&mync=A&cm_sp=swgother-_-OCSWG60-OCSSKWKM-OCSSC5L9-OCSSTS2D-OCSS9QQS-OCSSB23CE-_-A

#IBMi

DOMPurify 3.2.6 has been release with several smaller fixes and improvements, thanks to all who contributed 💕

https://github.com/cure53/DOMPurify/releases/tag/3.2.6

Hopefully this will also help with the CI/CD issues that arose after the fake CVE was posted last week.

My new blog post 🥳

Improving AFD Socket Visibility for Windows Forensics & Troubleshooting

It discusses the low-level API under Winsock (IOCTLs on \Device\Afd handles) and explores the workings of the new socket inspection feature in System Informer 🔥
https://www.huntandhackett.com/blog/improving_afd_socket_visibility

FYI: under capitalism your DNA is worth $17

https://www.404media.co/23andme-sale-shows-your-genetic-data-is-worth-17/

Pwn2Own Berlin 2025 comes to a close. We awarded $1,078,750 for 28 unique 0-days. Congrats to @starlabs_sg for winning Master of Pwn with $320,000. Thanks to @offensive_con for hosting, and thanks to all who participated. Can't wait to see you next year! #Pwn2Own #P2OBerlin

Last 7 DAYS LEFT to submit to our Off-By-One 2025 CFP!

Got something exciting to share? Now’s your chance to speak at the conference.

⏰ Time is ticking!
http://offbyone.sg/cfp

Let’s make this unforgettable!
#OBO2025 #Singapore

Telemssage (410 GB)

https://ddosecrets.com/article/telemessage

Thousands of heap dumps taken May 4, 2025 from TeleMessage, which produces software used to archive encrypted messaging apps such as Signal and WhatsApp. Due to PII in the dataset and the inclusion of groups and messages unrelated to government or corporate behavior, the data is currently only being offered to journalists and researchers.

During the weekend, I’ve been working a bit on updating my battle-tested #semgrep ruleset for #c #vulnerability research

https://github.com/0xdea/semgrep-rules

Nothing major, just a couple of small updates. It feels good to be back doing some #security #research! Let’s see where this takes me…

The slides for my OffensiveCon talk "Finding and Exploiting 20-year-old bugs in Web Browsers" https://docs.google.com/presentation/d/1pAosPlKUw4uI5lfg7FVheTZAtI5mUy8iDeE4znprV34/edit?usp=sharing

We need a "slow computing" movement, the digital equivalent of "slow food".

We need to code better, with human care and attention to details, with true understanding of technology, achieving better performance with fewer resources.

We can do more with less if we believe in it.

When I say that I can't recommend third-party forks of either Firefox or Chrome for real world use, this kind of thing is why. *This* is the bar for what the security team for a browser needs to be able to do. A fork where the entire technical team is ten people that can't even keep up with upstream patches is sadly not in the running.

https://blog.mozilla.org/security/2025/05/17/firefox-security-response-to-pwn2own-2025/

I have an idea for a program to promote businesses that are good for the environment because they help people repair things. Places like tailors, cobblers, electronics repair are all at risk of vanishing along with the skills required to do these things.

Right at a moment when we should be making repair and longevity a bigger part of material culture.

My cobbler is very old and isn't training anyone to take over.

Just telling people to repair things won't cut it.

Thrilled to share our latest deep dive into Windows Kernel Streaming!
Just presented this research at @offensive_con.

Check it out: https://devco.re/blog/2025/05/17/frame-by-frame-kernel-streaming-keeps-giving-vulnerabilities-en/

yeah, I concur.

#CookieLaw #DataProtection

Our CfP is open for only one more week! Do you have a wonderful creation, an art installation, a workshop or a hack that you would like to give a stage? Here is your chance!
https://cfp.why2025.org