NJ
LLA
Home
AI
Crypto
Finance
Security
Tech
BTC
—
—
ETH
—
—
SOL
—
—
BNB
—
—
GOLD
—
—
XRP
—
—
DOGE
—
—
ADA
—
—
Security
77 articles
Security
A laughing RAT: CrystalX combines spyware, stealer, and prankware features
Apr 1 · 3 min
Security
[MEDIUM] Security Advisory: Parse Server has a LiveQuery protected-field guard bypass via array-like logical operator value (parse-server, parse-server)
Apr 1 · 3 min
Security
[CRITICAL] Security Advisory: CI4MS: Permissions Management Full Account Takeover for All-Roles & Privilege-Escalation via Stored DOM XSS (ci4-cms-erp/ci4ms)
Apr 1 · 3 min
Security
[HIGH] Security Advisory: YesWiki has Persistant Blind XSS at “/?BazaR&vue=consulter” (yeswiki/yeswiki)
Apr 1 · 3 min
Security
[HIGH] Security Advisory: Ash.Type.Module.cast_input/2 atom exhaustion via unchecked Module.concat allows BEAM VM crash (ash)
Apr 1 · 3 min
Security
[HIGH] Security Advisory: xmldom: XML injection via unsafe CDATA serialization allows attacker-controlled markup insertion (xmldom, @xmldom/xmldom, @xmldom/xmldom)
Apr 1 · 4 min
Security
[HIGH] Security Advisory: @tinacms/graphql’s Media Endpoints Can Escape the Media Root via Symlinks or Junctions (@tinacms/graphql)
Apr 1 · 3 min
Security
[MEDIUM] Security Advisory: YesWiki has Multiple Reflected Cross-site Scripting Vulnerabilities (yeswiki/yeswiki)
Apr 1 · 3 min
Security
[HIGH] Security Advisory: @tinacms/graphql’s `FilesystemBridge` Path Validation Can Be Bypassed via Symlinks or Junctions (@tinacms/graphql)
Apr 1 · 3 min
Security
[HIGH] Security Advisory: SiYuan vulnerable to reflected XSS via SVG namespace prefix bypass in SanitizeSVG (getDynamicIcon, unauthenticated) (github.com/siyuan-note/siyuan/kernel)
Apr 1 · 3 min
Security
[MEDIUM] Security Advisory: OpenClaw’s Discord component interaction ingress skips guild/channel policy enforcement (openclaw)
Apr 1 · 4 min
Security
[LOW] Security Advisory: OpenClaw SSRF guard misses four IPv6 special-use ranges (openclaw)
Apr 1 · 3 min
Posts pagination
←
1
2
3
4
5
6
7
→
