kb.wisconsin.edu Cross Site Scripting vulnerability OBB-3960336

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified th ...

Continue Reading
Mozilla: Privates Emails of Moz Workers Leaked in Public file

Summary: Hi Team in the policy of mozilla emails and names of workers is private and dont be shared or disclosure anyway ! because of this restriction all workers in moz gived id and worker name ab ...

Continue Reading
mycompany VDP: This test report has been disclosed by 20_root.

This test report has been disclosed by 20_root....Read More ...

Continue Reading
nullsec VDP: Test by HDR

Test by...Read More ...

Continue Reading
CVE-2024-50354

gnark is a fast zk-SNARK library that offers a high-level API to design circuits. In gnark 0.11.0 and earlier, deserialization of Groth16 verification keys allocate excessive memory, consuming a lot o ...

Continue Reading
Laravel Reverb Missing API Signature Verification

Impact A community member disclosed an issue where verification signatures for requests sent to Reverb's Pusher-compatible API were not being verified. This API is used in scenarios such as broad ...

Continue Reading
CVE-2024-50347

Laravel Reverb provides a real-time WebSocket communication backend for Laravel applications. Prior to 1.4.0, there is an issue where verification signatures for requests sent to Reverb's Pusher- ...

Continue Reading
Hashicorp Vault vulnerable to denial of service through memory exhaustion

Vault Community and Vault Enterprise (“Vault”) clusters using Vault’s Integrated Storage backend are vulnerable to a denial-of-service (DoS) attack through memory exhaustion through a Raft clust ...

Continue Reading

Back to Main

Subscribe for the latest news: