curl: CRLF Injection in `–proxy-header` allows extra HTTP headers (CWE-93)
Vulnerability description not...Read More ...
Continue Reading
July 12, 2025
curl: curl -OJ allows creating custom .curlrc file which allows exfiltrating private data, among other things
Vulnerability description not...Read More ...
Continue Reading
July 12, 2025
Tools for Humanity: Unlock underage blocked app without support interaction using airplane mode
The vulnerability allowed users to bypass the support requirement to unlock their blocked accounts in the iOS app. By changing the date of birth to an underage value, the app would lock the account an ...
Continue Reading
July 12, 2025
Mars: [XSS] Reflected XSS via POST request in (███████)
A reflected Cross-Site Scripting (XSS) vulnerability was identified in the celular parameter of a POST request to the homepage of a Mars-owned website. The vulnerability was classified as medium sever ...
Continue Reading
July 12, 2025
curl: `Curl_socketpair()` fallback vulnerable to man-in-the-middle attack
Vulnerability description not...Read More ...
Continue Reading
July 12, 2025
curl: CVE-2025-4947: QUIC certificate check skip with wolfSSL
Vulnerability description not...Read More ...
Continue Reading
July 12, 2025
curl: CVE-2025-5025: No QUIC certificate pinning with wolfSSL
Vulnerability description not...Read More ...
Continue Reading
July 12, 2025
Back to Main
