API - API Security Blog

Mailhog 1.0.1 – Stored Cross-Site Scripting (XSS)

Post ContentRead More ...

June 27, 2022

Exploit for Vulnerability in Microsoft

# Cve-2022-30136-RCE CVE-2022-30136 Unauthenticated RCE in Micro...Read More ...

June 26, 2022

Sealighter – Easy ETW Tracing for Security Research

[![](https://blogger.googleusercontent.com/img/a/AVvXsEi05zup_HlXmqBdcFpdaulbwly8mssKV1IGlJ7Q_vpJcyRiABjY-Rn0i1k-KJ3WB2hQRmZbK8GQx_yVClYCBbkOBQvqluhUAWvWzzbMle-LrPgsOxycNiMp0WCOiEPZc9-cFNB2I0JmfYySWMf ...

June 26, 2022

Nim-Loader – WIP Shellcode Loader In Nim With EDR Evasion Techniques

[![](https://blogger.googleusercontent.com/img/a/AVvXsEghoAwSP8tfQ0sIRJuF9bla0dxRrdW1lPn96pxum-o5IHa7VkI95mmOfDO5j3BktycKqlFVVdOpyf3jpwf-tFUn2R0pmrTikJme--EpMM14WUufp3PCZmJo-7mMiAaADeKvExN71KOWHN8JteT ...

June 25, 2022

CVE-2022-31017

Zulip is an open-source team collaboration tool. Versions 2.1.0 through and including 5.2 are vulnerable to a logic error. A stream configured as private with protected history, where new subscribers ...

June 25, 2022

SUSE SLED15 / SLES15 Security Update : salt (SUSE-SU-2022:2178-1)

The remote SUSE Linux SLED15 / SLES15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:2178-1 advisory. - An issue was discovered in SaltStack Salt ...

June 25, 2022

Salt’s PAM auth fails to reject locked accounts

An issue was discovered in SaltStack Salt in versions before 3002.9, 3003.5, 3004.2. PAM auth fails to reject locked accounts, which allows a previously authorized user whose account is locked still r ...

June 25, 2022

Salt’s PAM auth fails to reject locked accounts

An issue was discovered in SaltStack Salt in versions before 3002.9, 3003.5, 3004.2. PAM auth fails to reject locked accounts, which allows a previously authorized user whose account is locked still r ...

June 25, 2022