In usememos/memos 0.9.0 and prior, a user with login permission can delete all notes of the whole application via `API DELETE https://demo.usememos.com/api/memo/$idnote`. The vulnerability will lose a ...
Continue Reading31 декабря, 2022
In usememos/memos 0.9.0 and prior, a user can archive any private memos, delete any shortcut, and edit any shortcut from other users via API.Read More ...
Continue Reading31 декабря, 2022
As a sponsor of [Ekoparty 2022](), GitHub had the privilege of submitting several challenges to the event's Capture The Flag (CTF) competition. Hubbers from across the company came together to brainst ...
Continue Reading31 декабря, 2022
# Description As fer the Flow Admin can't ARCHIVE OWN account . i was able to ARCHIVE ADMIN OWN Account by intercept the request and change ID Value to Admin. which leads to ARCHIVED the ADMIN Accou ...
Continue Reading30 декабря, 2022
![2022 Annual Metasploit Wrap-Up](https://blog.rapid7.com/content/images/2022/12/metasploit-haxmas-candy-canes.jpeg) It's been another gangbusters year for Metasploit, and the holidays are a time to g ...
Continue Reading30 декабря, 2022
The remote SUSE Linux SLES15 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2022:4635-1 advisory. - A vulnerability was found in CRI-O that causes mem ...
Continue Reading30 декабря, 2022
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary GuLoader is an advanced malware downloader that uses polymorphic shellcode to bypass traditional security ...
Continue Reading30 декабря, 2022
------------------------------------------------------------------------- Debian LTS Advisory DLA-3251-1 [email protected] https://www.debian.org/lts/security/ ...
Continue Reading30 декабря, 2022
Back to Main