Lichess: CSRF at Network feature
A CSRF vulnerability was found in the network feature, where an attacker could change the Network Routing settings by sending a CSRF script to the...Read More ...
Continue Reading
August 12, 2025
curl: GnuTLS CURLINFO_TLS_SESSION / CURLINFO_TLS_SSL_PTR type confusion
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
WakaTime: Not a Vuln: Race Condition Allows Creation of Multiple Organizations with the Same Name
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
curl: Use After Free (that leads to arbitrary Write for some versions)
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
curl: Use-After-Free in OpenSSL Keylog Callback via SSL_get_ex_data() in libcurl
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
AWS VDP: XSS on Amazon Aquisition: elemental
The XSS vulnerability on Amazon's acquisition of Elemental was identified and addressed. The summary provided a brief overview of the...Read More ...
Continue Reading
August 12, 2025
curl: HTTP Proxy Bypass via `CURLOPT_CUSTOMREQUEST` Verb Tunneling
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
curl: OpenSSL HTTP/3 bogus CURLINFO_TLS_SSL_PTR
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
Back to Main
