Twitter
信息源 时间
Twitter
CVE
cvenew 原文
CVE-2021-31511 This vulnerability allows remote attackers to execute arbitrary code on affected installations of OpenText Brava! Desktop Build 16.6.4....
Twitter
Black Hat
BlackHatEvents 原文
Black Hat Briefings will be offered both Virtually (online) and Live, In-Person Wednesday, August 4 & Thursday, August 5. Learn the very latest in inf...
Twitter
Elon Musk
elonmusk 原文
Re @SpaceX Unfortunately, launch is called off for today, as an aircraft entered the “keep out zone”, which is unreasonably gigantic.  There is simp...
Twitter
Elon Musk
elonmusk 原文
Re @SpaceX Sonic boom incoming
Twitter
Elon Musk
elonmusk 原文
RT SpaceX: Live webcast of the Transporter-2 mission →
Twitter
Elon Musk
elonmusk 原文
RT SpaceX: Falcon 9 and 88 spacecraft are vertical on pad 40 ahead of today’s launch. The 58-minute window opens at 2:56 p.m. EDT, and the webcast wi...
Twitter
Black Hat
BlackHatEvents 原文
This 2-day hands-on training introduces you to customizing & developing software reverse engineering solutions with the open-source Ghidra tool suite....
Twitter
Elon Musk
elonmusk 原文
Re @IIHS_autosafety Top Safety Pick+ from IIHS! That’s the highest overall rating, but we think we can get max score for all subcategories/individual...
Twitter
Project Zero Bugs
ProjectZeroBugs 原文
KVM: double fetch in nested_svm_vmrun can lead to unrestricted MSR access
Twitter
Project Zero Bugs
ProjectZeroBugs 原文
An EPYC escape: Case-study of a KVM breakout
Twitter
blueblue
piedpiper1616 原文
RT PortSwigger Research: Pre-auth RCE in ForgeRock OpenAM (CVE-2021-35464) by @artsploit
Twitter
Black Hat
BlackHatEvents 原文
25 years ago, the first timing attacks against well-known cryptosystems such as RSA & Diffie-Hellman were introduced. Timing attacks have frequently r...
Twitter
DEF CON
defcon 原文
Re @fak3r We don’t want that either. We have been clear in all of our communications but we will make it more explicit.
Twitter
DEF CON
defcon 原文
Re @zudasworld You can write it up and submit it, and see what the party review people say. If not a party you could do a meet up.
Twitter
DEF CON
defcon 原文
Re @DevWagmi @dagger3d Different because we are a private event and we will require it as a condition of entry. Florida passed a law to prevent checki...
Twitter
pyn3rd
pyn3rd 原文
RT PortSwigger Research: Pre-auth RCE in ForgeRock OpenAM (CVE-2021-35464) by @artsploit
Twitter
☣ KitPloit - Hacker Tools
KitPloit 原文
WAF-A-MoLE - A Guided Mutation-Based Fuzzer For ML-based Web Application Firewalls
Weibo
page tombkeeper
tombkeeper 原文
《塞尔达传说:天空之剑》要出 Switch 版了
Twitter
CVE
cvenew 原文
CVE-2020-7871 A vulnerability of Helpcom could allow an unauthenticated attacker to execute arbitrary command. This vulnerability exists due to insuff...
Twitter
CVE
cvenew 原文
CVE-2021-34550 An issue was discovered in Tor before 0.4.6.5, aka TROVE-2021-006. The v3 onion service descriptor parsing allows out-of-bounds memory ...
Twitter
CVE
cvenew 原文
CVE-2021-34549 An issue was discovered in Tor before 0.4.6.5, aka TROVE-2021-005. Hashing is mishandled for certain retrieval of circuit data. Consequ...
Twitter
CVE
cvenew 原文
CVE-2021-32565 Invalid values in the Content-Length header sent to Apache Traffic Server allows an attacker to smuggle requests. This issue affects Ap...
Twitter
CVE
cvenew 原文
CVE-2021-28691 Guest triggered use-after-free in Linux xen-netback A malicious or buggy network PV frontend can force Linux netback to disable the int...
Twitter
CVE
cvenew 原文
CVE-2021-28690 x86: TSX Async Abort protections not restored after S3 This issue relates to the TSX Async Abort speculative security vulnerability. Pl...
Twitter
CVE
cvenew 原文
CVE-2021-27577 Incorrect handling of url fragment vulnerability of Apache Traffic Server allows an attacker to poison the cache. This issue affects Ap...
Twitter
CVE
cvenew 原文
CVE-2021-23400 The package nodemailer before 6.6.1 are vulnerable to HTTP Header Injection if unsanitized user input that may contain newlines and car...
Twitter
CVE
cvenew 原文
CVE-2021-22545 An attacker can craft a specific IdaPro *.i64 file that will cause the BinDiff plugin to load an invalid memory offset. This can allow ...
Twitter
blueblue
piedpiper1616 原文
GitHub - afwu/PrintNightmare -
Twitter
Rodolfo Assis
rodoassis 原文
Re @PogoWasRight Yes. Sometimes I get some special help from extraordinary souls like @zseano and @kenansec and kind support from members of community...
Twitter
Rodolfo Assis
rodoassis 原文
Re @sed_boiii Yes along with my wife and kids.
Twitter
Rodolfo Assis
rodoassis 原文
It's unspeakable hard to be responsible for so many lives (dogs and cats respectively).
Twitter
CVE
cvenew 原文
CVE-2021-34548 An issue was discovered in Tor before 0.4.6.5, aka TROVE-2021-003. An attacker can forge RELAY_END or RELAY_RESOLVED to bypass the inte...
Twitter
CVE
cvenew 原文
CVE-2021-33503 An issue was discovered in urllib3 before 1.26.5. When provided with a URL containing many @ characters in the authority component, the...
Twitter
CVE
cvenew 原文
CVE-2021-31838 A command injection vulnerability in MVISION EDR (MVEDR) prior to 3.4.0 allows an authenticated MVEDR administrator to trigger the EDR ...
Twitter
CVE
cvenew 原文
CVE-2021-1134 A vulnerability in the Cisco Identity Services Engine (ISE) integration feature of the Cisco DNA Center Software could allow an unauthen...
Twitter
CVE
cvenew 原文
CVE-2021-32723 Prism is a syntax highlighting library. Some languages before 1.24.0 are vulnerable to Regular Expression Denial of Service (ReDoS). Wh...
Twitter
CVE
cvenew 原文
CVE-2021-32722 GlobalNewFiles is a mediawiki extension. All existing versions of GlobalNewFiles are affected by an uncontrolled resource consumption v...
Twitter
CVE
cvenew 原文
CVE-2020-21142 Cross Site Scripting (XSS) vulnerabilty in IPFire 2.23 via the IPfire web UI in the mail.cgi.
Twitter
CVE
cvenew 原文
CVE-2021-35303 Cross Site Scripting (XSS) in Zammad 1.0.x up to 4.0.0 allows remote attackers to execute arbitrary web script or HTML via the User Ava...
Twitter
CVE
cvenew 原文
CVE-2021-35302 Incorrect Access Control for linked Tickets in Zammad 1.0.x up to 4.0.0 allows remote attackers to obtain sensitive information.
Twitter
CVE
cvenew 原文
CVE-2021-35301 Incorrect Access Control in Zammad 1.0.x up to 4.0.0 allows remote attackers to obtain sensitive information via the Ticket Article det...
Twitter
CVE
cvenew 原文
CVE-2021-35300 Text injection/Content Spoofing in 404 page in Zammad 1.0.x up to 4.0.0 could allow remote attackers to manipulate users into visiting ...
Twitter
CVE
cvenew 原文
CVE-2021-35299 Incorrect Access Control in Zammad 1.0.x up to 4.0.0 allows attackers to obtain sensitive information via email connection configuratio...
Twitter
CVE
cvenew 原文
CVE-2021-35298 Cross Site Scripting (XSS) in Zammad 1.0.x up to 4.0.0 allows remote attackers to execute arbitrary web script or HTML via multiple mod...
Twitter
CVE
cvenew 原文
CVE-2021-32720 Sylius is an Open Source eCommerce platform on top of Symfony. In versions of Sylius prior to 1.9.5 and 1.10.0-RC.1, part of the detail...
Twitter
CVE
cvenew 原文
CVE-2020-22609 Cross Site Scripting (XSS) vulnerability in Enhancesoft osTicket before v1.12.6 via the queue-name parameter in include/class.queue.php...
Twitter
CVE
cvenew 原文
CVE-2020-22608 Cross Site Scripting vulnerability in Enhancesoft osTicket before v1.12.6 via the queue-name parameter to include/ajax.search.php.
Twitter
CVE
cvenew 原文
CVE-2020-22607 Cross Site Scripting vulnerabilty in LimeSurvey 4.1.11+200316 via the (1) name and (2) description parameters in application/controller...
Twitter
CVE
cvenew 原文
CVE-2021-35525 PostSRSd before 1.11 allows a denial of service (subprocess hang) if Postfix sends certain long data fields such as multiple concatenat...
Twitter
CVE
cvenew 原文
CVE-2020-20640 Cross Site Scripting (XSS) vulnerability in ECShop 4.0 due to security filtering issues, in the user.php file, we can use the html enti...