curl: CVE-2025-5025: No QUIC certificate pinning with wolfSSL
Vulnerability description not...Read More ...
Continue Reading
August 05, 2025
curl: Disclosure of email addresses
Vulnerability description not...Read More ...
Continue Reading
August 05, 2025
Mozilla: IDOR: Account Deletion via Session Misbinding – Attacker Can Delete Victim Account
A critical vulnerability was identified in the Firefox Accounts API that allowed an authenticated attacker to permanently delete any user's account by sending a POST /v1/account/destroy request u ...
Continue Reading
August 05, 2025
curl: Use-After-Free in OpenSSL Keylog Callback via SSL_get_ex_data() in libcurl
Vulnerability description not...Read More ...
Continue Reading
August 05, 2025
curl: Memory Leak in libcurl via Location Header Handling (CWE-770)
Vulnerability description not...Read More ...
Continue Reading
August 05, 2025
curl: Arbitrary File Read via file:// Protocol in cURL
Vulnerability description not...Read More ...
Continue Reading
August 05, 2025
curl: Default Minimum TLS Version Set to TLS v1.0 (Cryptographic Weakness)
Vulnerability description not...Read More ...
Continue Reading
August 05, 2025
Lichess: Improper Authentication Throttling Allows Attacker-Controlled Account Lockouts
Vulnerability description not...Read More ...
Continue Reading
August 05, 2025
Back to Main
