Unauthenticated RCE in Default-Install of Appsmith
#infosec #cybersecurity #ethicalhacking #news #privacy
lnbc1u1pn788gmpp5a8xp5azlu0tjvsaukmw9sjy32ucd33tx379r6rky9xkgf44cmpmshp5fw6mltpr4pcle066097ge428vrc37r45r5g2exhz0hmhdy068dlqcqzzsxqyz5vqsp54s8ggc2zkmq92hj5pckckp2le4g95zreqt8x0sspwfydv932xulq9qxpqysgqhphagsyayt2mdw73524djt3hxts3qhkh0ky6ft36eu0m66fqrv7z2k2unc27hyr907nvhzk22hp08stlhjj338lngcxey3v435yqw8cpxglru2
Automatically create an operation log of your shell
https://github.com/DrorDvash/ShellOpsLog
#infosec #cybersecurity #ethicalhacking #news #privacy lnbc1u1pnaqg0epp5mx8wl9qkqlw92hw6xqpj3nezm285evfvtef77qatgk55a5z7ll3qhp5yhyaxw6ntqvr7pjtslxgzddgwts9kwxy4l4v64xyvg9zs6065akqcqzzsxqyz5vqsp57ez62w8cfkphtlmpx4t74xea7ua5aaefj6wg2k2x982d6xdhmctq9qxpqysgqndtgs9clun7rcc2lf8ff6hxsdjsshpjj3wjk23u0g59zkmhf878x4u56wzprx72qf5n6g9u363jnuv7uvdl5sd87qu0xmnvgqwaqmscpfasram
How API Connections Spill Secrets
https://binsec.no/posts/2025/03/api-connections
#infosec #cybersecurity #ethicalhacking #news #privacy lnbc1u1pnu74zepp5l0f2u6c85tmh4tnfaxskdkhpeu2tawq8n2ypwy63k575mgzdeakqhp59vx6gwp6tr5nnn8wedqhxvz5hwqt3nnvj2f0t5g6jcalw2pamz4qcqzzsxqyz5vqsp5setu83xl3e0lynah6995pc97veuzuq3k7tdzn9mjvnm6ap88am6q9qxpqysgq09gd7sc3svz6wtkrc95h5uct0m2efzkr6qvhg64ruhaeec2y5l8rxr6nn0aam0z30c6trvrvvkvz65nxq7swu4xpvqpn2gth686fr5cp97d84q
Leaking the email of any YouTube user
#infosec #cybersecurity #ethicalhacking #news #privacy
lnbc100n1pn66048pp5l44uxjmcmtx5ngvvf530xpw6sv22djxqn8y7cxhs3fzg23xjsrkqhp53h6wccvyeqc09t9yp09ya7wrghtj893dza0t8tdw5qawk5kr3yhscqzzsxqyz5vqsp582ruesesaxxum267u85f7mz3su507kg4jegf3hlv9djvthw0slcq9qxpqysgq5ul3uyqan22kqk8qflhsmxjd6tr7gf7me60ymre3aweq4rqdacsqhaysx7jtlyjsfsjvhd0c20y5x20uyuwel5sugc99zgtljdpafyqp8hl67r
0-click #deanonymization attack targeting #Signal, #Discord and hundreds of platform
https://gist.github.com/hackermondev/45a3cdfa52246f1d1201c1e8cdef6117
#infosec #cybersecurity #ethicalhacking #news #privacy
lnbc100n1pnerfxvpp5f8p6qyheq3wm8vatp0dhc2en63dl8mzkjd3ntamcv30w650hdftqhp59mzp4wyhv0rrxrg7f30wtz2nydqs2f8qw37pgypn9ma5xqj0eehqcqzzsxqyz5vqsp55ncczvpqaklm27xgcgvm37njgtp2m9hpnwjq79j75vvdscw4dztq9qxpqysgqvrfvqulty4awr9nz06akhxkl48t0apaa7j4262k38cpc9t0g5zh8866uusft7nc0tpyateflh2k0l9srq5dvam6la385zpzuh8yghqqprmy2a4
Bypassing disk encryption on systems with automatic TPM2 unlock
https://oddlama.org/blog/bypassing-disk-encryption-with-tpm2-unlock/
lnbc100n1pnck55tpp5r3s79au78smykte68e74j8pdthd6xgwvv9ttc886epvp8wjgme8qhp5ex9knqztjhpyjcv0f2u0xfqw58kgkuw44ek38g6umqpsxw9637gqcqzzsxqyz5vqsp5xtgmqrd2vngjhvrp69a4kxypncwn4hyyc3g58a3s8ydgztaalyhq9qxpqysgqldtuzegxl6pwv804vhgswa25v67f66gcxmr8vdsuxmkvt060mrv9rj4vgjsv2a0at73myvhezferme0r2ma3dslxjt52pkvkmjg2nfgptmzh9e
#infosec #cybersecurity #ethicalhacking #news #privacy
Finding SSRFs in Azure DevOps
https://binarysecurity.no/posts/2025/01/finding-ssrfs-in-devops
#infosec #cybersecurity #ethicalhacking #news #privacy
lnbc100n1pnck5swpp5l9cl843rekn4fj769r8fkahqpac4t97zqushq6j79xdy8sk5lvhqhp5t0a7ekqhcs7wa4qnhmsw7n9ppjt52jq0npuva9v57uc3unzaz6xqcqzzsxqyz5vqsp5f9u4vce4jflthrpu4w6na6f6ntlnpycfmtyfnfp0pks69pqmkx4s9qxpqysgqrj3kpnx6z7950as0lqft57lr50jeuyuf0t9v3tmegvdk7znd0pyx9s8lg4lswz4l66d48aavg85lhtxrv9w3nrjzz6gk5668xkcefygqfd03l7
Millions of Accounts Vulnerable due to Google’s OAuth Flaw
https://trufflesecurity.com/blog/millions-at-risk-due-to-google-s-oauth-flaw
#infosec #cybersecurity #ethicalhacking #news #privacy
lnbc100n1pncwzlvpp5t30a4q9hxv9egdgp8facwr3rkqtde03j0fs8f5frmd0m5qfkhlsqhp5sdjgg9qg27fa8vncj0jgmfh64csyyr9dzrsceqkkpu85lefdlrfqcqzzsxqyz5vqsp5l9rdppzun6hevfgagpry74yrn5s57raglyvagek65zjcmav7urfq9p4gqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqpqysgq5uyphup870jven2az79ravvz43jqn8sy5hcknmlvryzles4uc9yzmkyrelvx0uf72je5dnpyl4ygsrfx8k3s37q6tyvfvcm7wclgkzgp3p06an
Microsoft OLE exploitable via Email
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21298
#infosec #cybersecurity #ethicalhacking #news #privacy
lnbc100n1pncwz6vpp5s37vp74hyatutqyjd8jup9dtxwsnmdrpeldg34y6q28zrgnnf83shp5qnenvajvprptw0806hrwx6ek8aknl968hrmtea6dp8ps69l2h6cqcqzzsxqyz5vqsp58msldcsxlg3yemjwd4qdty7h833ccxzq9zmt59t9vckqa3ellt7q9qxpqysgqw395q69z6wt4ufzcaeg500va2r9pvtdh2u54p7hvwk8w2yz4rqpqsc6xjs677n73ekn6wjd45crsz0ttj53wghtck72rd3620pfd9rqpvvcp40
Exploitation Ivanti Connect
#infosec #cybersecurity #ethicalhacking #news #privacy
Bypassing File Upload Restrictions To Exploit Client-Side Path Traversal
https://blog.doyensec.com/2025/01/09/cspt-file-upload.html
#infosec #cybersecurity #ethicalhacking #news #privacy
Abuse a time-based sql injection
https://www.hackmosphere.fr/time-based-blind-sql-injection/
#infosec #cybersecurity #ethicalhacking #news #privacy
Bypass BitLocker encryption on Windows 11
lnbc100n1pnh80urpp5xld5gf7tnah7xcqq7eunxz3e2v62znvjkulyz2f22tvuxrxuma8shp5d4yhg4d0ft63kzauwszqrx7leglvpvjsygv7pk4w932sn9p8s8zscqzzsxqyz5vqsp5vjc62yhdn0rarahav5thwjj6f4fhuyj0qyv34jhczh5lh0jdmpds9p4gqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqpqysgqnyzut5elu8e72qpllwezfga0l6h8q22dx2xvm8xhuhmt50fd5qc95w268rj8lked4zgz0l4ampyn30yyk6cg7m8naakm4nn84czhmcqpdp3wml
#infosec #cybersecurity #ethicalhacking #news #privacy
One Sat a day makes you happy on Saturday lnbc10n1pnk69q9pp5ycqm0qh2yz5ce2put4xt4mckme6dgpexm07fk5keqxp3k4k0lh0shp5gx9n27xnkmxhlhaq7jwn5q768zrx5sk4lam7gqdqq7x67ue9k30scqzzsxqyz5vqsp5qrd0dq7w55zanh7e9ytknjlj73flugq5uqdldh7zeh2936selvrq9p4gqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqpqysgqutn30lddzmnuvsf9j6ln9586drs7jvd9y7kqfzguv3u6ll54868zgud33vt4anhppg57wpq5kda8f8vrallxxfwypjdku8d4krlgnlspm4y9cd
Bypassing airport security via SQL injection
#infosec #cybersecurity #ethicalhacking #news #privacy
Firewallas, Diabetics, And… Bluetooth
https://www.labs.greynoise.io/grimoire/2024-08-20-bluuid-firewalla/
#infosec #cybersecurity #ethicalhacking #news #privacy
Exploiting pfsense Remote Code Execution
#infosec #cybersecurity #ethicalhacking #news #privacy
https://laburity.com/exploiting-pfsense-remote-code-execution-cve-2022-31814/
VStarcam CB73 is an attractive-looking compact IP camera with hard-coded root password.
#infosec #cybersecurity #ethicalhacking #news #privacy #nostr
Anyone can Access Deleted and Private Repository Data on GitHub
#infosec #cybersecurity #ethicalhacking #news #privacy
https://trufflesecurity.com/blog/anyone-can-access-deleted-and-private-repo-data-github
Let me know if you need a invite to try the new #proton #wallet