curl: Use After Free (that leads to arbitrary Write for some versions)
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
WakaTime: Not a Vuln: Race Condition Allows Creation of Multiple Organizations with the Same Name
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
curl: HTTP Proxy Bypass via `CURLOPT_CUSTOMREQUEST` Verb Tunneling
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
Nintendo: Man-in-the-middle through broken SSL certificate verification
The vulnerability allowed an attacker to perform a man-in-the-middle attack by bypassing SSL certificate...Read More ...
Continue Reading
August 12, 2025
WakaTime: Double Clickjacking Attack on WakaTime OAuth Authorization Flow at https://wakatime.com/oauth/authorize
The WakaTime OAuth authorization flow was vulnerable to a double-clickjacking attack. The attack allowed an attacker to trick users into unknowingly clicking the "Connect my WakaTime account& ...
Continue Reading
August 12, 2025
curl: on the implications of permitting procedural culling
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
curl: HTTP Request Smuggling Vulnerability Analysis – cURL Security Report
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
curl: CRLF injection in libcurl’s SMTP client via –mail-from and –mail-rcpt allows SMTP command smuggling
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
Back to Main
