curl: on the implications of permitting procedural culling
Vulnerability description not...Read More ...
Continue Reading
August 05, 2025
curl: Sensitive information disclosure with malicious netrc file
Vulnerability description not...Read More ...
Continue Reading
August 05, 2025
curl: Failure to strip Proxy-Authorization header on change in origin
Vulnerability description not...Read More ...
Continue Reading
August 05, 2025
Lichess: Improper Authentication Throttling Allows Attacker-Controlled Account Lockouts
Vulnerability description not...Read More ...
Continue Reading
August 05, 2025
curl: Use after free (or assert triggered) with failed allocations in openssl
Vulnerability description not...Read More ...
Continue Reading
August 05, 2025
curl: Arbitrary File Read via file:// Protocol in cURL
Vulnerability description not...Read More ...
Continue Reading
August 05, 2025
Node.js: Windows Device Names (CON, PRN, AUX) Bypass Path Traversal Protection in path.normalize()
An incomplete fix has been identified for a vulnerability affecting Windows device names in the path.normalize() function in Node.js. The vulnerability allows path traversal protection to be bypassed ...
Continue Reading
August 05, 2025
curl: Credential leak on redirect due to improper state clearing when parsing macdef in netrc.c
Vulnerability description not...Read More ...
Continue Reading
August 05, 2025
Back to Main
