CVE-2021-41780 Foxit PDF Reader before 11.1 and PDF Editor before 11.1, and PhantomPDF before 10.1.6, allow attackers to trigger a use-after-free and ...

CVE-2021-40326 Foxit PDF Reader before 11.1 and PDF Editor before 11.1, and PhantomPDF before 10.1.6, mishandle hidden and incremental data in signed ...

CVE-2022-34668 NVFLARE, versions prior to 2.1.4, contains a vulnerability that deserialization of Untrusted Data due to Pickle usage may allow an unpr...

CVE-2022-38557: D-Link DIR845L Static Default Credential Flaw

CVE-2022-38555: Linksys E1200 buffer overflow vulnerability

A domain penetration scanning tool that facilitates one-click automation, comprehensive information collection and scanning for domain privilege escal...

RT Pedram Amini: The folks at @Mandiant have released a Python3 interface to Ghidra called "Ghidrathon": Code: Blog:

Surveillance firm’s leaked docs show the purchase of an $8M iOS RCE zero-day exploit

Twilio breach let hackers see Okta's one-time MFA passwords

DuckDuckGo opens its privacy-focused email service to everyone

Vision2 this script analyses the Nmap XML scanning results parses each CPE context and correlates to search CVE on NIST. You can use that to find publ...

NATO Probes Hackers Selling Data from Top Missile Firm MBDA

LockBit ransomware gang gets aggressive with triple-extortion tactic

A curated list of cryptography resources and links.

UAC Bypass by abusing RPC and debug objects.

CISA Adds 10 New Known Actively Exploited Vulnerabilities to its Catalog

RT Janggggg: Last week, in the HITB SECCONF, i saw an interesting challenge: linkextractor which have many way to solve, My solution is to abuse the i...

RT 78ResearchLab: Our researchers wrote another PoC code and analysis about Windows IKE Extension(CVE-2022-21849)!

警惕“罚款式创收”冲动

右边有所不知。虽然现代人通过眼睛损失的精气多了，然而现代人通过眼睛采阴补阳也多了。//@赛太公: 那现代人的寿命应该比手机 电视发明前短啊//@折翼丛林:把眼睛抠了不就保留住精气了吗？//@中医养生集萃 :谢谢，终于找到理论依据了  查看图片

Re @WholeMarsBlog First few days, just 1k owners, but going to 10k if no major issues. Note, 10.69.2, hopefully going out week after this, is the wide...

Re @MuskUniversity Good to ask yourself this often

Re @CSI_Starbase Agreed, we recently made this change & many others. An intense effort is underway to achieve robust engine containment in case of RUD...

🔴 REPRISE / RERUN / - LOCALIZANDO DADOS SENSIVEIS NOS NOSSOS JAVASCRIPT ❗️comandos ❗️cursos ❗️social ❗️prime ❗️blaze❗️vps

Hijacking Satellites Is Easier Than You'd Think

52pojie上有网友分享JEB 4.19.0.202208250333。网页链接，网页链接

原创文章来咯《Cisco RV340 wfapp 命令注入漏洞（CVE-2022-20827）分析》作者：Rivaille @ 知道创宇404实验室链接：网页链接

This will happen again – just a matter of time

Godspeed Artemis!

Re @RenataKonkoly @Kristennetten @culturaltutor

Re @RenataKonkoly @Kristennetten @culturaltutor The swoop of the X is meant to represent the rocket’s arc to orbit

Re @jonbbc Hopefully, this week

Re @Kristennetten @culturaltutor I somewhat agonized over the Tesla & SpaceX font design (love fonts tbh). There are some similarities, particularly u...

Re @jgebbia Wise actions

Re @Ox4d5a @hcltech Congrats!!

CVE-2022-38511 TOTOLINK A810R V5.9c.4050_B20190424 was discovered to contain a command injection vulnerability via the component downloadFile.cgi.

CVE-2022-38510 Tenda_TX9pro V22.03.02.10 was discovered to contain a buffer overflow via the component httpd/SetNetControlList.

CVE-2022-36616 TOTOLINK A810R V4.1.2cu.5182_B20201026 and V5.9c.4050_B20190424 was discovered to contain a hardcoded password for root at /etc/shadow....

CVE-2022-36615 TOTOLINK A3000RU V4.1.2cu.5185_B20201128 was discovered to contain a hardcoded password for root at /etc/shadow.sample.

CVE-2022-36614 TOTOLINK A860R V4.1.2cu.5182_B20201027 was discovered to contain a hardcoded password for root at /etc/shadow.sample.

CVE-2022-36613 TOTOLINK N600R V4.3.0cu.7647_B20210106 was discovered to contain a hardcoded password for root at /etc/shadow.sample.

CVE-2022-36612 TOTOLINK A950RG V4.1.2cu.5204_B20210112 was discovered to contain a hardcoded password for root at /etc/shadow.sample.

CVE-2022-36611 TOTOLINK A800R V4.1.2cu.5137_B20200730 was discovered to contain a hardcoded password for root at /etc/shadow.sample.

CVE-2022-36610 TOTOLINK A720R V4.1.5cu.532_B20210610 was discovered to contain a hardcoded password for root at /etc/shadow.sample.

CVE-2022-36708 Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the Id parameter at /student/bookdetails.php...

CVE-2022-36707 Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the Id parameter at /librarian/bookdetails.p...

CVE-2022-36706 Ingredients Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the Id parameter at /stocks/manage...

CVE-2022-36705 Ingredients Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the Id parameter at /stocks/manage...

CVE-2022-36704 Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the Id parameter at /librarian/studentdetail...

CVE-2022-36573 A cross-site scripting (XSS) vulnerability in Pagekit CMS v1.0.18 allows attackers to execute arbitrary web scripts or HTML via a craft...