Twitter
信息源 时间
Weibo
page pyn3rd
pyn3rd 原文
如果中国的注册球员和Java程序员一样多,那国足就有希望了。
Twitter
CVE
CVEnew 原文
CVE-2022-22510 Codesys Profinet in version V4.2.0.0 is prone to null pointer dereference that allows a denial of service (DoS) attack of an unauthenti...
Twitter
CVE
CVEnew 原文
CVE-2022-22509 In Phoenix Contact FL SWITCH Series 2xxx in version 3.00 an incorrect privilege assignment allows an low privileged user to enable full...
Twitter
CVE
CVEnew 原文
CVE-2022-21817 NVIDIA Omniverse Launcher contains a Cross-Origin Resource Sharing (CORS) vulnerability which can allow an unprivileged remote attacker...
Twitter
CVE
CVEnew 原文
CVE-2022-0366 An authenticated and authorized agent user could potentially gain administrative access via an SQLi vulnerability to Capsule8 Console be...
Twitter
CVE
CVEnew 原文
CVE-2022-21724 pgjdbc is the offical PostgreSQL JDBC Driver. A security hole was found in the jdbc driver for postgresql database while doing security...
Twitter
CVE
CVEnew 原文
CVE-2021-41018 A improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiWeb version 6.4.1 and bel...
Twitter
CVE
CVEnew 原文
CVE-2021-39070 IBM Security Verify Access 10.0.0.0, 10.0.1.0 and 10.0.2.0 with the advanced access control authentication service enabled could allow ...
Twitter
CVE
CVEnew 原文
CVE-2021-39066 IBM Financial Transaction Manager 3.2.4 does not invalidate session any existing session identifier gives an attacker the opportunity t...
Twitter
CVE
CVEnew 原文
CVE-2021-39044 IBM Financial Transaction Manager 3.2.4 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious ...
Twitter
CVE
CVEnew 原文
CVE-2021-36193 Multiple stack-based buffer overflows in the command line interpreter of FortiWeb before 6.4.2 may allow an authenticated attacker to a...
Twitter
CVE
CVEnew 原文
CVE-2021-24043 A missing bound check in RTCP flag parsing code prior to WhatsApp for Android v2.21.23.2, WhatsApp Business for Android v2.21.23.2, Wha...
Twitter
CVE
CVEnew 原文
CVE-2020-26208 JHEAD is a simple command line tool for displaying and some manipulation of EXIF header data embedded in Jpeg images from digital camer...
Twitter
CVE
CVEnew 原文
CVE-2021-43073 A improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiWeb version 6.4.1 and 6.4...
Twitter
CVE
CVEnew 原文
CVE-2021-43062 A improper neutralization of input during web page generation ('cross-site scripting') in Fortinet FortiMail version 7.0.1 and 7.0.0, v...
Twitter
CVE
CVEnew 原文
CVE-2021-42753 An improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability [CWE-22] in FortiWeb management interfa...
Twitter
CVE
CVEnew 原文
CVE-2021-41016 A improper neutralization of special elements used in a command ('command injection') in Fortinet FortiExtender version 7.0.1 and below...
Twitter
CVE
CVEnew 原文
CVE-2021-36177 An improper access control vulnerability [CWE-284] in FortiAuthenticator HA service 6.3.2 and below, 6.2.x, 6.1.x, 6.0.x may allow an a...
Twitter
Nicolas Krassas
Dinosn 原文
RT Mustafa Can İPEKÇİ: I wonder how many people in #infosec community reported Jonathan's account, I'm not sure how @Twitter handles mass reports b...
Twitter
Nicolas Krassas
Dinosn 原文
Microsoft Defender now detects Android and iOS vulnerabilities
Twitter
Nicolas Krassas
Dinosn 原文
How I reversed engineered my SONOS to play YouTube videos on it.
Twitter
Nicolas Krassas
Dinosn 原文
Phant0m - Windows Event Log Killer
Twitter
Nicolas Krassas
Dinosn 原文
DMCA-dot-com XSS vuln reported in 2020 still live today and firm has shrugged it off
Twitter
Nicolas Krassas
Dinosn 原文
New Malware Used by SolarWinds Attackers Went Undetected for Years
Twitter
Nicolas Krassas
Dinosn 原文
Ipsourcebypass - This Python Script Can Be Used To Bypass IP Source Restrictions Using HTTP Headers
Twitter
Nicolas Krassas
Dinosn 原文
The Account Takeover Cat-and-Mouse Game
Twitter
Nicolas Krassas
Dinosn 原文
RT dosxuz: So I wrote a blog, detailing my C# implementation of the Process Ghosting technique. I tried to detail as much as I could, so one can learn...
Twitter
👑 OFJAAAH 👑
ofjaaah 原文
RT Cyethack Solutions: Find open redirect with gf: echo " ref @ofjaaah #bugbounty #bugbountytips #cybersecurity #infosec #information
Twitter
👑 OFJAAAH 👑
ofjaaah 原文
RT SecurityTrails: Finding a few open databases on the internet requires some skill, but a researcher was able to find thousands of open databases run...
Twitter
👑 OFJAAAH 👑
ofjaaah 原文
RT Oliver Rickfors: January came with lots of luck! Cache poisoning, credentials in file disclosures and a bunch of DOM XSS through eventListeners in ...
Weibo
page ringzero
ringzero 原文
不被闹钟和电话闹醒,睡到自然醒的感觉真好,起床之后神清气爽。上午状态不佳大概率是没睡够,要睡到自然醒暂时只有「早点上床睡觉」这个解法
Weibo
page tombkeeper
tombkeeper 原文
社会正义战士(英语:Social Justice Warrior,通常缩写为SJW;或称正义魔人)是一个贬义词语,指支持女权主义、环保、民权、多元文化主义和身份认同政治等后现代进步主义观点并积极参与社会运动的个人。指责一个人为社会正义战士带有指责其寻求主观验证而非任何深层次的信念的意味,并且借助参与虚伪 ...全文
page
Weibo
page 周鸿祎
周鸿祎 原文
作为冬奥会火炬手,我今天感到非常高兴和无比自豪!传递奥运圣火,就是传递奥运的拼搏精神。再次预祝奥运健儿能够在赛场上勇创佳绩、为国争光! 周鸿祎的微博视频
Weibo
page 周鸿祎
周鸿祎 原文
我今天有幸能参与冬奥会火炬传递,感到非常高兴和无比自豪!奥林匹克精神所倡导的坚韧不拔、奋斗为乐的价值理念,与我们科技工作者的精神是一致的,激励我们不畏艰难、勇攀高峰,全力突破关键核心技术,为实现高水平科技自立自强贡献力量!预祝北京冬奥会圆满举办,祝奥运健儿勇创佳绩、为国争光!
page
Weibo
page yuange1975fuckwb
yuange1975fuckwb 原文
这么干税都白交了交再多税也不够他们造的呀
page
Twitter
Rasta Mouse
_RastaMouse 原文
RT Security Onion: ICYMI yesterday we released #SecurityOnion 2.3.100! This includes our new #CaseManagement interface! #FreeAndOpen #infosec  #infose...
Twitter
Burp Suite
Burp_Suite 原文
Re @arr0way It's not currently possible to add requests based on a specific condition but you can use the filter on the site map so it just displays t...
Twitter
Nicolas Krassas
Dinosn 原文
TProxer: Burp Suite extension to find reverse proxy path based SSRF
Twitter
Nicolas Krassas
Dinosn 原文
Dozens of Security Flaws Discovered in UEFI Firmware Used by Several Vendors
Twitter
Nicolas Krassas
Dinosn 原文
RT 0xkasper: My write-up of CVE-2021-36393 and CVE-2021-36397, SQL Injection and Broken Access Control in Moodle.
Twitter
Nicolas Krassas
Dinosn 原文
RT James Kettle: The recordings from #BHEU have just landed on youtube! If you're going to watch just one, I'd recommend "Practical HTTP Header Smuggl...
Twitter
INTIGRITI
intigriti 原文
Re @remonsec @InsiderPhD Well, we have multiple swag voucher giveaways every month! 😇 Make sure to participate or get it immediately over here:
Twitter
INTIGRITI
intigriti 原文
Re @InsiderPhD Time to get cozy 😇 Enjoy!
Weibo
page redrain_QAQ
redrain_QAQ 原文
1Password这一轮居然融了6.7亿刀,看来还是拓展的2B业务块比之前订阅吸引人啊,而且国内现在貌似没有专门做无口令密码管理赛道的啊,有人带我辞职吗,我去给你偷密码
Weibo
page tombkeeper
tombkeeper 原文
爱是危险的,所以不要乱试。关于这个道理,推荐阅读:梅里美《伊尔的维纳斯》。
Weibo
page tombkeeper
tombkeeper 原文
一中一西,卧龙凤雏:
page
Twitter
Burp Suite
Burp_Suite 原文
Re @xploresec @ricardo_iramar @infosecwilson Are you still encountering this issue?
Twitter
CVE
CVEnew 原文
CVE-2022-24301 In Minetest before 5.4.0, players can add or subtract items from a different player's inventory.
Twitter
CVE
CVEnew 原文
CVE-2022-24300 Minetest before 5.4.0 allows attackers to add or modify arbitrary meta fields of the same item stack as saved user input, aka ItemStack...
Twitter
Nicolas Krassas
Dinosn 原文
How to Analyze RTF Template Injection Attacks