curl: HTTP Proxy Bypass via `CURLOPT_CUSTOMREQUEST` Verb Tunneling
Vulnerability description not...Read More ...
Continue Reading
August 04, 2025
curl: CRLF injection in libcurl’s SMTP client via –mail-from and –mail-rcpt allows SMTP command smuggling
Vulnerability description not...Read More ...
Continue Reading
August 04, 2025
Mozilla: IDOR: Account Deletion via Session Misbinding – Attacker Can Delete Victim Account
A critical vulnerability was identified in the Firefox Accounts API that allowed an authenticated attacker to permanently delete any user's account by sending a POST /v1/account/destroy request u ...
Continue Reading
August 04, 2025
curl: access notes without permission
Vulnerability description not...Read More ...
Continue Reading
August 04, 2025
curl: Memory Leak in libcurl via Location Header Handling (CWE-770)
Vulnerability description not...Read More ...
Continue Reading
August 04, 2025
curl: Disclosure of email addresses
Vulnerability description not...Read More ...
Continue Reading
August 04, 2025
Lichess: Improper Authentication Throttling Allows Attacker-Controlled Account Lockouts
Vulnerability description not...Read More ...
Continue Reading
August 04, 2025
curl: Use-After-Free in OpenSSL Keylog Callback via SSL_get_ex_data() in libcurl
Vulnerability description not...Read More ...
Continue Reading
August 04, 2025
Back to Main
