| CVE-2023-22524: RCE Vulnerability in Atlassian Companion for macOS |
|
|
|
| Securing our home labs: Frigate code review |
|
|
|
| pfSense Security: Sensing Code Vulnerabilities with SonarCloud |
|
|
|
| SonicWall WXA – Authentication Bypass and Remote Code Execution Vulnerability |
|
|
|
| Argument injection vulnerability in multiple Atos Unify OpenScape products |
|
|
|
| Multiple Vulnerabilities In Extreme Networks ExtremeXOS |
|
|
|
| Owncloud: details about CVE-2023-49103 and CVE-2023-49105 |
|
|
|
| CVE-2023-37927 & CVE-2023-37928 - Multiple post-auth blind OS command and Python code injection vulnerabilities in Zyxel’s NAS326 devices |
|
|
|
| CVE-2023-4473 & CVE-2023-4474 - Authentication bypass and multiple blind OS command injection vulnerabilities in Zyxel’s NAS326 devices |
|
|
|
| Gadgets chain in Laravel |
|
|
|
| Securing our home labs: Home Assistant code review |
|
|
|
| Gadgets chain in WordPress |
|
|
|
| Visual Studio Code Security: Finding New Vulnerabilities in the NPM Integration (3/3) |
|
|
|
| Magento Template Engine, A Story Of CVE-2022-24086 |
|
|
|
| Critical Variable Mass Assignment Vulnerability in Adobe ColdFusion (CVE-2023-44350) |
|
|
|
| Visual Studio Code Security: Markdown Vulnerabilities in Third-Party Extensions (2/3) |
|
|
|
| Not Your Stdout Bug - RCE in Cosmos SDK |
|
|
|
| Citrix Bleed: Leaking Session Tokens with CVE-2023-4966 |
|
|
|
| crewjam/saml - IdP XSS Via Missing Binding Syntax Validation In ACS Location |
|
|
|
| Security Vulnerabilities in CasaOS |
|
|
|
| Finding A Pop Chain On A Common Symfony Bundle: Part 2 |
|
|
|
| [CVE-2023–38743] ManageEngine ADManager Command Injection |
|
|
|
| RCE in Progress WS_FTP Ad Hoc via IIS HTTP Modules (CVE-2023-40044) |
|
|
|
| Exploiting ASP.NET TemplateParser — Part II: SharePoint (CVE-2023-33160) |
|
|
|
| Unzipping Dangers: OpenRefine Zip Slip Vulnerability |
|
|
|
writeups.xyz
/
Security Code Review