curl: Title: Remote Code Execution (RCE) via Arbitrary Library Loading in `–engine` option
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
Node.js: Windows Device Names Still Allow Path Traversal in UNC Paths After CVE-2025-27210 Fix
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
curl: HTTP Proxy Bypass via `CURLOPT_CUSTOMREQUEST` Verb Tunneling
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
curl: on the implications of permitting procedural culling
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
curl: Vulnerability Report: Public Exposure of Security Audit File
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
WakaTime: Not a Vuln: Race Condition Allows Creation of Multiple Organizations with the Same Name
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
MainWP: Stored Cross-Site Scripting (XSS) in “Add Contact” Name Field – MainWP Plugin
A stored cross-site scripting (XSS) vulnerability was discovered in the MainWP WordPress plugin. The vulnerability was found in the "Add Contact" > Contact Name field, where u ...
Continue Reading
August 12, 2025
curl: Vulnerability Report: Local File Disclosure via file:// Protocol in cURL
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
Back to Main
