appsec.fyi

Recently Added Resources

The latest 175 resources added across all topics.

Recently Added

The most recent resources added to appsec.fyi, across all topics. Subscribe to the RSS feed to stay updated.

Date Topic Link Excerpt
2026-07-12Supply ChainSoftware Supply Chain Attack Highlights Growing Demand for Preemptive Package SecurityA recent software supply chain attack has underscored the increasing need for preemptive security in package management. These attacks target the dependencies that software relies on, introducing malicious code into legitimate applications. This incident highlights the vulnerabilities inherent in interconnected development environments and emphasizes the growing demand for robust solutions that can identify and mitigate risks *before* they impact end-users. Organizations are realizing the critical importance of securing their software supply chains to prevent widespread compromise.
2026-07-12RCECritical CVE-2026-2699 and CVE-2026-2701 Vulnerabilities Force Immediate Shutdown of Progress ShareFile Storage Zone Controller v5.xProgress ShareFile Storage Zone Controller v5.x has been forced into an immediate shutdown due to critical vulnerabilities, CVE-2026-2699 and CVE-2026-2701. These security flaws necessitate this urgent action to protect affected systems. Further details are available via the provided link.
2026-07-12Supply ChainGhostcommit: Multimodal Prompt Injection Attack Exposes AI Code Review Tools to Supply Chain RisksA new multimodal prompt injection attack, dubbed "Ghostcommit," targets AI code review tools, posing significant supply chain risks. This attack leverages the AI's ability to process both text and image inputs. By embedding malicious prompts within images, attackers can trick AI code reviewers into accepting vulnerable code or even executing arbitrary commands. This bypasses traditional security checks and injects compromised code into development pipelines, potentially leading to widespread system compromise. The research highlights a critical vulnerability in how AI models handle mixed-media inputs, demanding urgent attention from developers of AI-powered security solutions.
2026-07-12Supply ChainCompromised jscrambler 8.14.0 npm Release Runs Hidden Platform-Specific Binary During InstallThe jscrambler npm package version 8.14.0 was found to be compromised. During installation, it secretly executed a platform-specific binary. This binary's purpose and potential impact are currently unclear. Users who have installed this version are advised to uninstall it immediately and review their systems for any suspicious activity. Further investigation is ongoing to determine the full extent of the compromise and its implications.
2026-07-12ReconScanning malicious websites with arbitrary number of VPN tunnels (Part 2)This document, Part 2 of "Scanning malicious websites with arbitrary number of VPN tunnels," likely details advanced techniques for identifying malicious websites by leveraging multiple VPN tunnels. It probably explores methods to bypass security measures and gather intelligence on threats, potentially by obfuscating the origin of scanning activity. The focus is on a technical approach to enhance the detection and analysis of harmful online content through sophisticated network routing.
2026-07-12RCEGlobal CMS Attack Wave: Attackers Distribute Web Shells via Known WordPress Joomla and Craft VulnerabilitiesAttackers are exploiting known vulnerabilities in WordPress, Joomla, and Craft CMS to distribute web shells globally. This widespread attack wave targets these popular content management systems, indicating a coordinated effort to gain unauthorized access to websites. The specific vulnerabilities being leveraged allow attackers to upload and execute malicious code, potentially leading to data breaches, website defacement, and further compromise of server resources. Users of these CMS platforms are strongly advised to update their software immediately and ensure all plugins and themes are also current to mitigate the risk of infection.
2026-07-12GraphQLGhost Accounts Abuse GitHub API in Mass Recon CampaignAnalysis of ghost account abuse of the GitHub API reveals mass reconnaissance campaigns leveraging dormant accounts and leaked credentials. Threat actors exploit unauthenticated API endpoints, including REST and GraphQL, to enumerate organizations, repositories, and users. While primarily focused on reconnaissance, some campaigns escalated to cloning repositories and exfiltrating data, sometimes using inadvertently exposed tokens. Detection strategies involve monitoring for data exfiltration from private repositories, anomalous user agent behavior, and establishing baselines for normal GitHub activity.
2026-07-11AIHalluSquatting Turns AI Hallucinations Into Botnet Delivery MechanismTechnique detailing HalluSquatting, an attack that leverages AI hallucinations to deliver botnets at scale. This untargeted promptware method exploits AI applications by pre-registering fake repository or package names that LLMs commonly invent. When users ask AI tools like Cursor, GitHub Copilot, or Gemini CLI to fetch resources, the AI may hallucinate a squatted name, download malicious instructions, and execute them via the built-in terminal, leading to the deployment of malware and the creation of agentic botnets.
2026-07-11AIResearchers hid a prompt injection inside a PNG and AI fell for itTechnique for prompt injection via image files that targets AI coding assistants like Claude. Researchers demonstrated hiding malicious instructions within a PNG image, which AI review tools often overlook. These hidden commands can later trigger AI assistants to access sensitive project files and exfiltrate data, disguised as legitimate code. The vulnerability's manifestation varies depending on the specific coding assistant used, emphasizing the need for multimodal AI review that scrutinizes all asset types.
2026-07-11AI'Ghostcommit' hides prompt injection in images to fool AI agents steal secretsWriteup on Ghostcommit, an attack technique that hides prompt injection within PNG images to bypass AI code reviewers and steal repository secrets. Researchers demonstrated how a malicious instruction embedded in an image file referenced by an AGENTS.md document could trick AI agents like Cursor with Claude Sonnet into exfiltrating sensitive data from .env files. This exploit leverages the current blind spot where AI code reviewers often skip image analysis, unlike proposed multimodal defenders.
2026-07-11AIShadow AI is Your New Attack SurfaceAnalysis of "Shadow AI" highlights how unmanaged AI systems, adopted by employees for efficiency, create significant security risks. These "Shadow AI" deployments bypass traditional security controls and introduce new attack vectors such as data poisoning, prompt injection, third-party AI supply chain risk, and credential exposure, exemplified by the Samsung incident in March 2024. Addressing this emergent threat requires integrating AI governance and cybersecurity functions, focusing on visibility, accountability, AI-specific controls, and expertise investment.
2026-07-11AIHow to Use AI Browsers Without Getting HackedGuide to using AI browsers like Perplexity Comet, ChatGPT Atlas, and Dia securely, highlighting risks such as prompt injection, unauthorized account access, and data leakage. It details vulnerabilities including CometJacking and Cross-Site Request Forgery (CSRF) affecting Atlas, and advises disabling data sharing for model training, restricting agent access to logged-in sessions, and utilizing incognito mode for sensitive tasks to mitigate these threats.
2026-07-11AINew hack exploits AI hallucinations to trick agents into running malicious code 'HalluSquatting' attack exploits a fundamental weakness in every available modelWriteup of the HalluSquatting attack, an exploit leveraging AI hallucinations to trick agentic AI models like Claude into executing malicious code from fake GitHub repositories. This technique exploits the non-deterministic nature of LLMs, causing them to generate plausible but nonexistent repository names, which attackers then register. Successful exploitation can lead to reverse shells, data exfiltration, and further system compromise, affecting models such as Claude Opus 4.5 and applications like Cursor and Copilot.
2026-07-11AIDesigning for the inevitable: System prompt leakage and mitigations in generative AI applicationsLibrary for defending against system prompt leakage in generative AI applications. This resource addresses LLM07, a top vulnerability where attackers use prompt injection to extract an application's system prompt, potentially revealing proprietary information and tool definitions. It emphasizes that full remediation is not currently possible, advocating for design principles that assume leaks will occur and implementing mitigation controls like Amazon Bedrock Guardrails' prompt attack filters to reduce exposure and increase extraction difficulty.
2026-07-11AIAI agents fall for indirect prompt injection trapsAnalysis of indirect prompt injection (IPI) traps reveals vulnerabilities in AI agents, with specific models like Llama3-3-70b-instruct, Llama3-2-90b-instruct, Gemini-3-flash, and Gemini-2.5-pro exhibiting susceptibility. This research highlights how hidden instructions embedded in websites can manipulate AI behavior, leading to scams that human users would typically avoid. The attack surface is expanding as AI agents interact more with the web, necessitating architectural rather than purely behavioral defenses, as traditional enterprise security models struggle to address these novel threats.
2026-07-11AIWhen AI Agents Attack: Autonomous Cyber Operations and Europes Governance GapAnalysis of autonomous AI agent operations reveals evolving cybersecurity threats and governance gaps. The emergence of platforms like Moltbook, where millions of AI agents interact, highlights risks from data leaks (API authentication tokens) and the difficulty of tracing accountability. Major AI models like Anthropic's Claude, capable of identifying and exploiting zero-day vulnerabilities across operating systems and browsers, demonstrate the blurring line between AI-assisted operations and autonomous cyber capabilities. The EU faces challenges adapting its governance frameworks to address these rapidly evolving, agentic AI risks, particularly given its dependence on U.S. AI infrastructure.
2026-07-11SSRFZOWEH: XXE LAB SOLVED: Exploiting XXE to perform SSRF attacks Goal: Use XXE to access AWS metadata endpoint Method: External entity pointing to #XXE #SSRFThis content details the successful exploitation of an XML External Entity (XXE) vulnerability to perform a Server-Side Request Forgery (SSRF) attack. The objective was to access the AWS metadata endpoint. The method involved utilizing an external entity to achieve this. The provided link points to further information on this XXE and SSRF exploit. No bug bounty payout amount is mentioned.
2026-07-11XSSCritical Zimbra Flaw Could Let Crafted Emails Run Malicious Code in User SessionsLibrary update addressing stored XSS in Zimbra Classic Web Client. Exploitation of this vulnerability allows attackers to inject and execute malicious JavaScript within user sessions via crafted emails, potentially leading to mailbox access, session data compromise, and account setting manipulation. This flaw, though unassigned a CVE, follows a history of XSS vulnerabilities in Zimbra, including CVE-2025-27915, CVE-2023-37580, and CVE-2024-27443. Users are advised to update to Zimbra Collaboration Suite version 10.1.19.
2026-07-11XSSZimbra 10.1.19 Fixes Stored XSS Flaw Triggered by Crafted EmailsZimbra 10.1.19 addresses a stored cross-site scripting (XSS) vulnerability that could be exploited by sending specially crafted emails. This flaw allowed attackers to inject malicious scripts into the Zimbra web client, potentially leading to unauthorized actions or data theft by users who viewed the compromised email. The update rectifies this security weakness, enhancing the platform's safety.
2026-07-11AICan AI-generated adversaries break TTP-based attribution? (arXiv 2026)This research explores whether AI-generated adversaries can evade TTP-based attribution methods. The study, "Can AI-generated adversaries break TTP-based attribution? (arXiv 2026)," investigates the effectiveness of current attribution techniques against sophisticated, AI-driven attackers. It analyzes how advanced AI might mimic or alter Tactics, Techniques, and Procedures (TTPs) to mislead security systems and prevent the identification of the true attacker. The paper aims to understand the potential vulnerabilities in attribution models when faced with AI-powered threats and suggests future directions for developing more robust attribution systems.
2026-07-11Bug BountyAnonymous GitHub account mass-dropping undisclosed 0-daysArchive of public proof-of-concept and vulnerability research writeups, including specific findings for c-ares-tcp-uaf-calc-poc, curl-smtp-expn-recipient-crlf-injection, discourse-scoped-api-key-preauth-bypass, and rustdesk-session-permission-pocs. The repository preserves original READMEs and tracked files from former standalone repositories, ensuring byte-for-byte identical content as verified by Git tree data. This collection aims to foster interest in cybersecurity vulnerability research and encourage ethical disclosure.
2026-07-11OSINTShow HN: Osint tool that finds exposed files on domainsThis "Show HN" post introduces an OSINT tool designed to discover exposed files on various domains. The tool aids in identifying potentially sensitive information that might be unintentionally accessible via websites. No bug bounty payout amount is mentioned in the provided content.
2026-07-11SecretsShow HN: Bramble – Local-first password managerLibrary for local-first password management, Bramble offers Chromium browser extensions, and iOS/Android apps that sync vaults peer-to-peer. It uses a Rust crypto core for Argon2id key derivation and AES-256-GCM encryption, with secrets wiped from memory post-use. Bramble supports passkeys, smart autofill, TOTP codes, and encrypted backups to local files or future cloud storage providers. It contrasts with cloud-based managers by ensuring vaults remain on user devices, eliminating a central breach target. Unlock options include master password, hardware keys, biometrics, or a recovery code.
2026-07-11AIA way to exclude sensitive files issue still open for OpenAI CodexLibrary of proposed features for OpenAI Codex, addressing the exclusion of sensitive files and paths from model analysis. This includes a mechanism for both repository-local and global ignore files, akin to `.codexignore`, to prevent the exposure of sensitive data such as `.env` files, `.pem` certificates, and `.ssh` directories, while still allowing analysis of others like `node_modules/`. The goal is deterministic and shareable configurations for team-wide consistency, building on prior discussions and aiming to rectify a gap in the current `codex-rs` implementation.
2026-07-11API SecurityHow to keep an HTTP connection alive for 9 hoursTool for managing CTF user accounts and notifications, built with Spring Boot, Spring Security, and WebFlux. It integrates with the CTFd API to create users, assign unique aliases, and manage email notifications, including handling API rate limits with robust retry mechanisms and supporting long-running bulk email processes using Server-Sent Events (SSE) for status updates.
2026-07-11Bug BountyPUMA live hacking event revisited: leHACK’s biggest Bug Bounty yetleHACK's biggest Bug Bounty event, focused on PUMA, saw participants uncover numerous vulnerabilities. The event, which brought together ethical hackers and security researchers, aimed to identify and fix security flaws within PUMA's digital systems. The detailed analysis of the event highlights the significant findings and contributions made by the hacking community to enhance PUMA's cybersecurity posture.
2026-07-11Supply ChainNew Trojan Turns Visual Studio Projects Into a Software Supply Chain Attack VectorA new Trojan has been discovered that exploits Visual Studio projects, turning them into a potent software supply chain attack vector. This malicious code can infiltrate development environments, allowing attackers to compromise legitimate software builds. The ultimate impact is the potential for widespread distribution of malware through trusted software updates.
2026-07-10RCEZero Day Initiative CVE-2026-47291: Remote Code Execution in the Windows HTTP.sysWriteup detailing CVE-2026-47291, a kernel-mode remote code execution vulnerability in Windows HTTP.sys. Exploitation involves an attacker sending crafted HTTP/1.x requests over TLS, triggering a heap buffer overflow during header parsing due to insufficient bounds checking when growing a buffer reference array. This can lead to denial-of-service or code execution with kernel privileges. The vulnerability is mitigated by configuring `MaxRequestBytes` to 65,535 or lower, and detection requires monitoring TLS-encrypted traffic for an unusually high number of HTTP header lines per request.
2026-07-10XSSRoundcube Webmail Security Update Patches Critical Zero-Click XSS and SSRF Bypass FlawsRoundcube Webmail has released a security update addressing critical zero-click vulnerabilities. These flaws allowed for Cross-Site Scripting (XSS) and Server-Side Request Forgery (SSRF) bypasses, potentially enabling attackers to execute malicious code or access internal resources without user interaction. Users are strongly advised to update their Roundcube installations immediately to mitigate these risks. The update is crucial for protecting against potential exploitation of these severe security weaknesses.
2026-07-10Supply ChainInjective Labs SDK npm package compromised to steal cryptocurrency keysLibrary for detecting supply-chain attacks like the compromise of the @injectivelabs/sdk-ts npm package. Hackers injected malicious code into version 1.20.21 of the package, which was downloaded 310 times, to steal cryptocurrency private keys and mnemonic seed phrases. The malware targeted functions for generating or importing wallet keys, exfiltrating captured data via HTTP POST requests. This incident highlights the risk to applications built with cryptocurrency wallets, trading bots, decentralized exchanges, and DeFi applications.
2026-07-10SSRFSudarshana: Cornered a headless PDF export that fetched user URLs. Pointed it at 169.254.169.254/latest/meta-data/iam/security-credentials/ and it echoed a role's temp keys. IMDSv2 blocks this: no PUT token no answer. Allowlist the hosts you call denylists miss the IP. #SSRF #IMDSv2A security researcher, Sudarshana, discovered a Server-Side Request Forgery (SSRF) vulnerability in a headless PDF export. By directing the export to a specific AWS IMDSv2 endpoint (169.254.169.254/latest/meta-data/iam/security-credentials/), they successfully retrieved temporary AWS credentials. The researcher notes that IMDSv2's default configuration, which requires a PUT token, prevents this exploitation. They recommend using host allowlists rather than denylists to mitigate such vulnerabilities, as denylists may miss specific IPs.
2026-07-10RCEOpenClaw Vulnerabilities Let Attackers Turn WhatsApp Messages Into Host-Level Code ExecutionResearchers have discovered critical vulnerabilities in OpenClaw, a messaging application. These flaws could allow attackers to execute arbitrary code on a user's host system simply by sending a specially crafted WhatsApp message. This means a malicious message could potentially compromise a user's entire device, going beyond just the messaging application itself. Further details are available at the provided link.
2026-07-10RCEDevelopers face RCE via Claude Code 'auto-mode' exploitA vulnerability in Claude Code's "auto-mode" allows for Remote Code Execution (RCE), posing a significant security risk to developers. This exploit enables malicious actors to potentially run arbitrary code on a developer's system through the AI assistant. Further details are available via the provided link. The summary does not include a payout amount as none was stated in the content.
2026-07-10AIHackers can use 9 of the most popular AI tools to assemble massive botnetsLibrary for mitigating prompt injection vulnerabilities in AI assistants. HalluSquatting, a novel pull-based attack, exploits LLMs' tendency to hallucinate resource identifiers, enabling the assembly of massive botnets and large-scale device infections. This technique targets AI coding assistants like Cursor, Gemini CLI, GitHub Copilot, and others by registering predicted hallucinated identifiers and seeding them with malicious payloads.
2026-07-10Supply ChainHackers tried to backdoor Injective npm package to steal wallet keysMalicious actors attempted to compromise the Injective npm package, a crucial component for developers building on the Injective blockchain. The attackers aimed to inject malicious code into the package to steal users' private wallet keys. This incident highlights the ongoing threats to the cryptocurrency ecosystem and the importance of robust security measures for open-source software. Further details on the specifics of the attack and its prevention are likely to be found in the linked article.
2026-07-10AICrowdStrike identifies five new prompt injection threats to AIAnalysis of five new prompt injection threats identified by CrowdStrike against AI systems. These techniques include Trigger-Activated Rule Addition, Cognitive Token Suppression, Algorithmic Payload Decomposition, Special Token Injection, and Unwitting User Context-Data Injection, which exploit LLMs by tricking them into accepting dubious instructions disguised as benign input. Security teams can counter these attacks through threat modeling, expanded testing, and detection engineering for composite attacks.
2026-07-10Supply ChainInjective software package hit by malicious supply chain attackLibrary for building Injective applications, compromised via a malicious supply chain attack on the `@injectivelabs/sdk-ts` package (v1.20.21) published to npm. Attackers gained access to a contributor's GitHub account to push malicious commits and, under the guise of telemetry, uploaded a backdoor that stole developers' private keys and mnemonic seed phrases when using `fromMnemonic` or `fromHex` wallet generation functions. The attack spread through transitive dependencies in 17 additional Injective packages.
2026-07-10RCEResearcher Details WhatsApp-to-Host Attack Chain Using Three OpenClaw FlawsWriteup detailing a WhatsApp-to-host attack chain leveraging three OpenClaw vulnerabilities: GHSA-hjr6-g723-hmfm and GHSA-9969-8g9h-rxwm, both involving OS command injection and incomplete input validation in the host execution environment filtering; and GHSA-575v-8hfq-m3mc, a path traversal flaw enabling sandbox bind mount bypass. These flaws allow for credential theft, privilege escalation, and arbitrary code execution without prior host compromise, as demonstrated by accessing sensitive user files or the Docker socket.
2026-07-10SSRFDaily CyberSecurity: Four Apache Camel vulnerabilities allow header injection server-side request forgery secret disclosure and an authentication bypass. Patch to 4.21.0 now. #ApacheCamel #HeaderInjection #SSRF #CyberSecurity #Vulnerability #InfoSecFour critical vulnerabilities have been discovered in Apache Camel, affecting versions prior to 4.21.0. These vulnerabilities enable header injection, server-side request forgery (SSRF), secret disclosure, and authentication bypass. Users are strongly advised to update to version 4.21.0 immediately to patch these security flaws and protect their systems.
2026-07-10API SecurityYour next insider threat doesnt have a badge. It has an API tokenLibrary for securing AI agents, this resource addresses the evolving threat landscape where authorized AI agents, acting within their granted permissions, can cause breaches through sequences of seemingly benign actions. It details failure modes like tool-chain abuse, delegation-chain exploitation, and approval evasion, arguing that traditional security models focused on "who is allowed in" and "what data is allowed out" are insufficient for agentic systems. The library advocates for a runtime policy engine to govern agent actions at the moment they occur, ensuring authority shrinks during delegation and that audit logs serve as immutable evidence.
2026-07-10SQLiDjango SQL Injection Vulnerability Actively Exploited in the WildA critical SQL injection vulnerability in Django is currently being exploited in the wild. This vulnerability affects Django versions 3.2.x prior to 3.2.18, 4.0.x prior to 4.0.7, and 4.1.x prior to 4.1.1. The exploit targets specific database queries that can be manipulated to gain unauthorized access or execute malicious commands. Users are strongly advised to update to the patched versions immediately to mitigate this risk. No specific bounty payout amount was mentioned in the provided content.
2026-07-10Supply ChainTurning software supply chain security into a daily habitGuide on operationalizing software supply chain risk, arguing for daily use of SBOMs beyond compliance for vulnerability triage, vendor access reviews, identity monitoring, and incident response. It draws on Group-IB’s High-Tech Crime Trend Report 2026 to illustrate how supply chain attacks link phishing, ransomware, and data breaches through inherited trust. The guide details prioritizing exposed systems, defining compromise windows, containing stolen credentials, and vendor risk scoring, highlighting AI's acceleration of attack timelines.
2026-07-10SSRFRoundcube Webmail 1.7.2 Fixes Zero-Click XSS SSRF Bypass and DoS FlawsRoundcube Webmail 1.7.2 addresses critical security vulnerabilities, including a zero-click Cross-Site Scripting (XSS) flaw, a Server-Side Request Forgery (SSRF) bypass, and Denial of Service (DoS) issues. The update provides essential patches to protect users from these threats.
2026-07-10SecretsInside an AI coal mine security camera network powered by plaintext passwordsWriteup of plaintext password vulnerability in Coal India's AI security camera network, exposing the "RPI Dashboard" developed by DeepSight AI Labs. The analysis details how an unauthenticated API call to `get_users` revealed an entire user list with weak, duplicated passwords, and how local storage manipulation could bypass authentication to access the alert dashboard across seven coal mines, a flaw later confirmed fixed by CERT-IN.
2026-07-10AIClaude Code is steganographically marking requestsAnalysis of Claude Code reveals prompt steganography used to mark requests. The application locally alters the system prompt by subtly changing date separators or apostrophes, embedding classification data about API base URLs and system timezones. This technique, triggered by the `ANTHROPIC_BASE_URL` environment variable and specific geographical timezones, aims to detect API resellers and unauthorized gateways. While not malicious, the hidden implementation of this classification mechanism undermines trust in a tool with extensive filesystem and shell access.
2026-07-10Supply ChainXsnow "protestware" in DebianWriteup detailing the "protestware" controversy surrounding the Xsnow application in Debian. The entry discusses how Xsnow's maintainer included a feature that displayed Ukrainian flags when the application's language was set to Russian. This triggered a debate on the Debian development list regarding potential violations of the Debian Free Software Guidelines (DFSG), specifically concerning discrimination. While Xsnow itself was deemed DFSG-compliant, the discussion highlighted concerns about software exhibiting deceptive behavior based on user settings.
2026-07-10AISymlinks Are Still Scary (And Yes, You Can Commit Them to Git)Library detailing symlink attacks, a decades-old vulnerability vector enabling arbitrary file access and RCE. These attacks leverage symbolic links, small files containing paths that, when opened by a program, redirect to another location. Git's support for committing symlinks allows attackers to ship them in repositories, posing risks to build scripts, editors, and AI agents that process files without proper path resolution. The library highlights historical examples like CVE-2021-32803, Zip Slip, CVE-2024-21626, and CVE-2024-32002, alongside modern instances in Incus, emphasizing the need to resolve paths atomically before operation.
2026-07-10Bug BountyWhy offensive security and exposure management can't stay siloed in the AI eraIn the AI era, offensive security and exposure management must integrate. Traditional silos hinder proactive threat identification and mitigation. AI-powered tools can enhance both, offering deeper insights into vulnerabilities and potential attack vectors. Integrating these disciplines allows organizations to move beyond reactive security measures and build a more resilient defense against evolving cyber threats. This unified approach is crucial for effective risk management in a rapidly changing landscape.
2026-07-10Bug Bounty[tl;dr sec] #336 - Autonomous Vulnerability Hunting, GuardDog 3.0, Are Bug Bounties Cooked?Library for automatically discovering and reproducing vulnerabilities, featuring improvements to Datadog's GuardDog 3.0 malware hunting tool. The entry also discusses the future of bug bounties in the age of AI, mentioning techniques for autonomous vulnerability hunting and the potential impact of frontier models on competition. It highlights security defaults for AWS Lambda Firecracker microVMs and Amazon's approach to AI governance, emphasizing end-to-end accountability.
2026-07-10Supply ChainCompromised @injectivelabs/sdk-ts exfiltrates wallet keys through fake telemetryWriteup detailing a malicious release of `@injectivelabs/sdk-ts` version 1.20.21, which exfiltrated wallet mnemonics and private keys by masquerading as telemetry. The compromised package subtly injected code into `PrivateKey.fromMnemonic` and `PrivateKey.fromHex` to capture sensitive data and send it to an attacker-controlled endpoint disguised as normal gRPC-web traffic. The attack also involved republishing 17 other `@injectivelabs` packages with a hard dependency on the poisoned SDK, highlighting the risks of transitive dependencies.
2026-07-10Supply ChainSecuring supply chains from network-based threatsLibrary for securing supply chains from network-based threats, focusing on visibility, control, and resilience. It details proactive vendor assessment, continuous monitoring, behavior-based endpoint protection, and managed hosting with robust access controls. Specific measures include regular audits of third-party partners against standards like ISO and GDPR, adopting least-privilege access, network segmentation, intrusion detection systems, and mandatory multi-factor authentication. The library also emphasizes the importance of enterprise-grade email security with behavioral detection, DNS filtering, web protection, and modern endpoint solutions leveraging machine learning and analytics for zero-day exploit detection. Continuous security awareness training is highlighted as crucial for strengthening the human element.
2026-07-10Supply ChainHackers tried to backdoor Injective npm package to steal wallet keysWriteup on a supply chain attack targeting the Injective npm package `@injectivelabs/sdk-ts`. Version 1.20.21 was compromised through a malicious commit on a developer's GitHub account, leading to the exfiltration of private keys and seed phrases via fake telemetry. This attack vector, which bypasses traditional blockchain security, underscores the risks associated with compromised developer tools, impacting users who may not have installed the affected SDK directly. The malicious code has since been removed and affected versions deprecated.
2026-07-10Supply ChainHackers attempt to backdoor Injective npm package to steal wallet keysLibrary providing security analysis of Injective Labs' TypeScript SDK, detailing a supply chain attack where malicious code was pushed to npm, specifically version 1.20.21. Attackers aimed to steal crypto wallet keys and mnemonics by hooking wallet creation functions, exfiltrating data to an obfuscated endpoint. The attack compromised 18 packages before being reversed, affecting ~50,000 weekly downloads and 87 dependent packages. Developers are advised to upgrade to version 1.20.23 and treat any processed credentials as compromised.
2026-07-09XSSRoundcube 0-Click Vulnerability Enables Stored XSS Attack via MIME Type AttachmentA critical 0-click vulnerability in Roundcube allows stored XSS attacks through specially crafted MIME type attachments. Attackers can exploit this by sending an email with an attachment having a malicious MIME type. When Roundcube processes this attachment, it renders the malicious content, leading to cross-site scripting execution within the victim's browser without any user interaction. This means sensitive data could be compromised or actions taken on behalf of the user.
2026-07-09RCEAttackers Exploit WordPress Plugin Vulnerabilities for Remote Code Execution and Webshell AccessAttackers Exploit WordPress Plugin Vulnerabilities for Remote Code Execution and Webshell Access https://ift.tt/l8HGU0N
2026-07-09SSRFDev: SSRF: Your ticket to internal networks & cloud metadata! Misconfigs in web apps let you fetch backend resources. Check URL params API endpoints. Ffuf & Burp are your friends. Master it! #SSRF #BugBountyThis content explains Server-Side Request Forgery (SSRF) vulnerabilities. SSRF attacks exploit web application misconfigurations to allow attackers to access internal networks and cloud metadata by fetching backend resources. Key areas to investigate for SSRF include URL parameters and API endpoints. Tools like Ffuf and Burp Suite are recommended for identifying these vulnerabilities. The post encourages mastering SSRF for bug bounty hunting. No specific payout amount is mentioned.
2026-07-09RCEChrome Update Patches 27 Vulnerabilities including Two Code Execution FlawsGoogle has released a Chrome update addressing 27 vulnerabilities, including two critical code execution flaws. These security patches are essential for users to protect their systems from potential exploits. The update enhances Chrome's overall security posture, safeguarding against malicious attacks. Users are strongly advised to update their Chrome browsers immediately to benefit from these vital security fixes and prevent any compromise.
2026-07-09RCE20 Remote Code Execution Vulnerabilities Patched in Foxit PDF Reader and EditorFoxit has released updates to address 20 critical Remote Code Execution (RCE) vulnerabilities discovered in its PDF Reader and Editor software. These flaws could allow attackers to execute arbitrary code on a user's system by tricking them into opening a specially crafted PDF file. Users are strongly advised to update their Foxit software immediately to the latest version to mitigate these security risks. No specific bounty amounts were mentioned in the provided content.
2026-07-09Supply ChainActive Exploitation Alert: Prompt Injection Vulnerability in GitHub Agentic Workflows Threatens Software Supply Chain SecurityAnalysis of prompt injection attacks targeting GitHub agentic workflows, affecting tools like GitHub Copilot, Google Gemini CLI, and Anthropic Claude Code. These attacks, demonstrated in campaigns like GhostAction and the NX Build System compromise, leverage CWE-1427 (Improper Neutralization of Untrusted Input for LLM Prompting) and MITRE ATT&CK T1677 (Poisoned Pipeline Execution) to steal credentials, execute arbitrary code, and modify repositories, impacting software supply chain security.
2026-07-09RCEPalo Alto PAN-OS Vulnerability Allows Arbitrary Code Execution Through Malicious Network TrafficA critical vulnerability in Palo Alto Networks' PAN-OS allows for arbitrary code execution. Attackers can exploit this by sending specially crafted network traffic, potentially compromising affected devices. While the article highlights the severity of this security flaw, no specific bug bounty payout amount is mentioned. Organizations using PAN-OS should prioritize patching their systems to mitigate this risk.
2026-07-09SSRFDaily CyberSecurity: Five Apache Camel vulnerabilities enable server-side request forgery and a Keycloak authentication bypass. Upgrade to 4.21.0 4.18.3 or 4.14.8. #ApacheCamel #SSRF #AuthBypass #Deserialization #Keycloak #InfoSecFive vulnerabilities in Apache Camel have been disclosed, enabling server-side request forgery (SSRF) and an authentication bypass in Keycloak. Users are strongly advised to upgrade their Apache Camel installations to versions 4.21.0, 4.18.3, or 4.14.8 to mitigate these security risks. The vulnerabilities also involve deserialization flaws.
2026-07-09Mobile1 in 2 devices sold in Africa exfiltrate data to ChinaWriteup detailing the reverse-engineering of Transsion's "Athena" and "oneID" telemetry frameworks, found on millions of TECNO, Infinix, and itel devices. The analysis reveals how embedded AES keys and a fixed IV within the client binary allow for decryption of sensitive data, including app network activity, foreground app status, precise location, and camera usage, all tied to permanent device identifiers. This research highlights significant mobile security risks stemming from hidden, first-party software collecting extensive user information without clear visibility.
2026-07-09AIGhostApproval: A Trust Boundary Gap in AI Coding AssistantsLibrary for detecting GhostApproval, a trust boundary gap vulnerability in AI coding assistants affecting Amazon Q Developer, Anthropic Claude Code, Augment, Cursor, Google Antigravity, and Windsurf. This vulnerability exploits symlink following (CWE-61) and UI misrepresentation (CWE-451), allowing malicious repositories to trick agents into writing to arbitrary files outside the workspace, potentially leading to remote code execution by concealing the true target from the user during confirmation prompts.
2026-07-09AISecure AI Workflows: The Identity and Access Management (IAM) ChecklistChecklist for securing AI workflows, focusing on Identity and Access Management (IAM) for both human-assisted AI (e.g., Claude Code, Cursor via MCP) and autonomous agents in CI/CD. It details an 8-point roadmap, including disabling anonymous access, using vetted MCP servers, employing restricted scoped tokens with downscoping, dynamic permission validation, audit log visibility via custom user-agent headers, composite identities for agents, restricting write operations (e.g., pull requests), and enforcing deterministic infrastructure-level IAM policies to prevent prompt injection attacks against production databases. The checklist principles apply broadly, though examples are from the JFrog Platform.
2026-07-09AICracking Firmware with Claude: Senior-Level Skill, Junior-Level AutonomyLibrary for AI-assisted firmware analysis, demonstrating Claude Code's ability to reverse-engineer proprietary SonicWall SWI encryption. This AI independently traced decryption logic through a decompiled binary, located a key within a HashiCorp Vault instance, reconstructed its master key from Shamir secret shares, and recovered an RSA private key. The process highlights senior-level technical knowledge combined with junior-level autonomy, requiring human guidance for strategic pivots and verification.
2026-07-09RCEJuniper Junos OS Multiple VulnerabilitiesBulletin on multiple Juniper Junos OS vulnerabilities, including CVE-2020-7450, CVE-2026-33794, and CVE-2026-57019, which can lead to denial of service, remote code execution, information disclosure, and security restriction bypass. These issues affect both Junos OS and Junos OS Evolved.
2026-07-08SSRFHugo | DevOps | Cybersecurity : #CVE-2026-57573 - #SSRF in #Crawl4AI #Docker #API. Streaming paths skip destination validation. Unauthenticated remote access to internal networks. #CVSS 8.6. No patch available. Mitigate immediately. #CVE #infosec #k8s #devops #devsecops #sysadmin #kubernetesCVE-2026-57573 is a critical Server-Side Request Forgery (SSRF) vulnerability in the Crawl4AI Docker API. It allows unauthenticated remote attackers to access internal networks due to streaming paths skipping destination validation. With a CVSS score of 8.6, this vulnerability is severe. No patch is currently available, making immediate mitigation crucial for DevOps, cybersecurity, and system administration professionals.
2026-07-08AIWhat is Prompt Injection? How it Works and How to Prevent ItLibrary for understanding and defending against prompt injection attacks, a top risk for LLM Applications, including techniques like EchoLeak (CVE-2025-32711) impacting Microsoft 365 Copilot and the OWASP LLM Top 10 designation. It details how instruction-overriding, natural-language-based, model-agnostic, and hard-to-eliminate attacks work, differentiating them from jailbreaking, and covers risks such as data theft and remote code execution. The library also explores methods to reduce this threat in connected systems and agentic AI.
2026-07-08RCEAttackers using Langflow flaw for credential harvesting (CVE-2026-55255)Writeup on CVE-2026-55255, an insecure direct object reference (IDOR) vulnerability in Langflow versions prior to 1.9.2. This flaw allows an authenticated attacker to execute any user's flow by supplying its ID, leading to credential harvesting, cross-tenant data exposure, and secret theft, as demonstrated by attackers exploiting it alongside CVE-2026-33017 for code execution and implant delivery. CISA has mandated federal agencies patch this vulnerability by July 10, 2026.
2026-07-08RCEPoC and Technical Details Released for SharePoint Remote Code Execution VulnerabilityProof-of-concept (PoC) and technical details for a SharePoint remote code execution (RCE) vulnerability have been released. This vulnerability could allow attackers to execute arbitrary code on affected SharePoint servers, posing a significant security risk. The public disclosure enables security researchers and administrators to better understand and address the threat. No bug bounty payout amount was explicitly stated in the provided content.
2026-07-08Supply ChainNorth Korea Expands the Reach of PolinRider Supply Chain Attack CampaignAnalysis of the PolinRider supply chain attack campaign, attributed to North Korean groups Famous Chollima and APT37. This ongoing campaign, targeting open source ecosystems like npm, Packagist, Go modules, and the Chrome Store, utilizes obfuscated JavaScript loaders hidden within malicious packages and browser extensions. Attackers leverage techniques such as whitespace padding, deceptive .woff2 font files, VS Code task files, and Git history rewriting to compromise developer accounts and repositories. Subsequent payloads, including DEV#POPPER RAT and OmniStealer, are fetched from blockchain and RPC infrastructure, aiming to steal credentials, exfiltrate source code, and achieve lateral movement within organizations.
2026-07-08SSRFGraven - Herald.codes: Hello tout le monde ! Nouvelle video Nouveau format #ssrf #owasp #pythonThis content announces a new video from Graven - Herald.codes in a new format, focusing on Server-Side Request Forgery (SSRF), OWASP, and Python. The post includes a link to the video. No bug bounty payout amounts are mentioned.
2026-07-08SSRFDaily CyberSecurity: New pretix vulnerabilities include a critical session takeover chain (CVE-2026-13602) and an SSRF API key leak. Update to 2026.5.3 now. #pretix #SessionTakeover #SSRF #CyberSecurity #CVE202613602 #CVE202613603Pretix has released version 2026.5.3 to address two critical vulnerabilities. CVE-2026-13602 is a session takeover chain, and another vulnerability allows for an SSRF API key leak. Users are urged to update immediately to mitigate these security risks.
2026-07-08Supply Chainnpm v12 Ships This Month Blocking Install Scripts That Enabled Year of Supply Chain AttacksLibrary for securing npm package installations, npm v12 introduces a significant security redesign by defaulting to blocking install scripts. This prevents arbitrary code execution from dependencies, a long-standing vulnerability exploited in supply chain attacks like Shai-Hulud and campaigns targeting Axios and Mastra AI. The new allowlist model requires explicit inclusion of packages authorized to run scripts, with changes version-controlled in source code and auditable in pull requests. It also addresses risks from Git dependencies and binding.gyp files, moving from implicit trust to explicit allowlisting as the default security posture.
2026-07-08RCECISA Flags Actively Exploited SharePoint RCE FlawAnalysis of CVE-2026-45659, an actively exploited SharePoint RCE vulnerability, details its exploitation via insecure deserialization by authenticated users with basic permissions. The flaw, impacting SharePoint Server Subscription Edition, 2019, and 2016, carries a CVSS score of 8.8, a network attack vector, and low complexity. CISA has added it to its Known Exploited Vulnerabilities Catalog, mandating fixes by July 4th.
2026-07-08RCECISA flags active SharePoint RCE exploit as Cisco UCM attacks continueLibrary of techniques and tools addressing active exploits against enterprise systems, including a Microsoft SharePoint deserialization flaw (CVE-2026-45659) allowing remote code execution and a Cisco Unified Communications Manager (UCM) vulnerability (CVE-2026-20230) enabling unauthorized file creation. The entry also touches on macOS credential harvesting via an infostealer utilizing AppleScript validation.
2026-07-08RCECISA Adds 4 Actively Exploited Adobe Joomla and Langflow Flaws to KEVVulnerabilities in Adobe ColdFusion (CVE-2026-48282), Joomlack Page Builder (CVE-2026-56290), Langflow (CVE-2026-55255), and JoomShaper SP Page Builder (CVE-2026-48908) have been added to CISA's Known Exploited Vulnerabilities catalog. These flaws, ranging from path traversal to authorization bypass and unrestricted file uploads, are being actively exploited for arbitrary code execution, remote code execution, and web shell deployment. Langflow vulnerabilities CVE-2026-55255 and CVE-2026-33017 have been weaponized in campaigns targeting LLM and AWS keys.
2026-07-08Supply ChainGitLost: a public GitHub issue can steer an org's Agentic Workflow into leaking private repo contents, and a one-word prefix ("Additionally") bypassed the threat-detection guardrailLibrary detailing GitLost, a prompt injection vulnerability in GitHub's Agentic Workflows. An unauthenticated attacker can exploit GitLost by posting a crafted GitHub Issue in a public repository, tricking the AI agent into leaking private repository contents. The vulnerability arises from treating user-controlled content as trusted instruction input, bypassing guardrails like the "Additionally" keyword, allowing unauthorized access to files such as README.md from private repositories within the same organization.
2026-07-08Bug BountyHow LLMs are changing Bug Bounty: an interview with IcareLLMs are revolutionizing bug bounty programs by enhancing vulnerability discovery and streamlining workflows. In an interview with Icare, it's highlighted how these AI tools can automate tasks, identify complex patterns, and even assist in report generation, leading to faster and more efficient bug hunting. This advancement allows researchers to focus on more sophisticated exploits. While specific payout amounts weren't mentioned, the overall sentiment is that LLMs are significantly boosting the effectiveness and potential of bug bounty programs.
2026-07-08AuthZBadSuccessor — Exploiting delegated Managed Service Accounts in Windows Server 2025Library for exploiting delegated Managed Service Accounts (dMSAs) in Windows Server 2025, detailing the "BadSuccessor" vulnerability. This flaw arises from missing permission checks, allowing low-level users with `CreateChild` rights on an OU to create a dMSA and link it to a privileged account. The system then incorrectly grants the dMSA all of the predecessor's permissions during Kerberos ticket issuance, enabling privilege escalation to high-level administrative roles.
2026-07-08XSSChaining a DOM XSS Sink, WAF Bypass, Cross-Origin Smuggling, and SDK Abuse into One Click Account…Library for chaining DOM XSS, WAF bypass via `window.name` cross-origin smuggling, and SDK abuse to achieve one-click account takeover. The technique exploits a `javascript:` URL sink, bypasses Akamai's WAF by inserting characters between keywords and parentheses, leverages `window.name` persistence across navigations, and abuses a first-party authentication SDK to retrieve signed JWTs and live AWS STS credentials.
2026-07-08SSRFThe HTTP 303 SSRF Hack : From Python HTTP Client Defaults to AWS Credential Exfiltration.Writeup detailing an HTTP 303 SSRF vulnerability that escalates to AWS credential exfiltration. This exploit chains a user-controlled `token_uri` field in BigQuery service account credentials, an HTTP client with default redirect handling, and the AWS Instance Metadata Service (IMDS). By configuring a server to respond with an HTTP 303 redirect, a POST request to IMDS is implicitly converted to a GET request, allowing the attacker to retrieve temporary IAM credentials for the Kubernetes worker node.
2026-07-08JWTJWTweak v2.1: A Guided, Offline Toolkit for Modern JWT AttacksToolkit for offline JWT attack execution, JWTweak v2.1 guides users through identifying and exploiting vulnerabilities. Users paste JWTs to receive decoded and risk-scored tokens, suggested attack vectors, and step-by-step instructions for executing techniques such as algorithm confusion. This Python 3.8+ powered application requires pyjwt and cryptography libraries and operates entirely offline.
2026-07-08Burp SuiteTop Burp Suite alternatives for web application security testingLibrary for identifying and assessing web application security vulnerabilities, this resource highlights alternatives to Burp Suite, focusing on tools that excel in CI/CD integration, AI-driven pentesting, and comprehensive attack surface management. It contrasts Burp's manual testing strengths and DAST capabilities with modern approaches like AI pentesting agents that discover shadow APIs, reason about business logic, and chain findings. The selection prioritizes solutions offering continuous automated testing, broader visibility into code and infrastructure, and automated discovery beyond provided specifications.
2026-07-08SecretsEvery Laptop Is a Credential Store: Where Secrets HideReference mapping credential locations on developer laptops; highlights shell history, environment files, cloud credential files like `~/.aws/credentials`, SSH keys, package registry tokens, AI agent caches, browser storage, and structured file exports. Discusses how traditional scanners miss these plaintext or configuration-based secrets, which are prime targets for infostealer malware and cloud credential theft.
2026-07-08AIBeyond Tokens SF: Best Ideas of the EveningLibrary for building secure and efficient AI agents, tackling challenges like token waste, context evaporation, and insecure infrastructure. It introduces JFrog Fly for managing release context and decision records, JFrog Boost for reducing token costs by filtering noise and preventing inefficient search, and NanoClaw for agent isolation, credential security, and human-in-the-loop approvals. These tools enable agents to operate autonomously with increased speed, trustworthiness, and reduced expenditure.
2026-07-08AINew Gaslight macOS Malware Uses Prompt Injection to Disrupt AI-Assisted AnalysisLibrary written in Rust, codenamed Gaslight, targets macOS and functions as an information stealer. It employs prompt injection against AI-assisted analysis tools by embedding fabricated system failure messages designed to deceive LLM triage agents into aborting analysis. Gaslight uses a Telegram bot API for its command-and-control channel, supports commands for remote execution, file exfiltration, and process termination, and employs a LaunchAgent for persistence. An embedded Python script gathers sensitive data from browsers and system processes, while a Bash installer deploys a Python interpreter from the "astral-sh/python-build-standalone" project. Operator configuration, including the Telegram bot token, is provided at runtime, and the malware self-redacts tokens from logs to further evade detection.
2026-07-07RCEActive Exploitation Alert: Critical CVE-2024-12356 Authentication Bypass and RCE in BeyondTrust Remote Support and PRAWriteup of CVE-2024-12356, a critical authentication bypass and RCE in BeyondTrust Remote Support and PRA. This flaw allows unauthenticated attackers to execute arbitrary commands via command injection in the thin-scc-wrapper script, chaining with CVE-2025-1094 for SQL injection. CISA has confirmed active exploitation by APT groups, including breaches of the U.S. Treasury, and a Metasploit module is available. Immediate patching of affected versions up to 24.3.1 is mandatory.
2026-07-07SQLiUbiquiti Disclosed 25 Security Vulnerabilities Including Injection and DoS FlawsUbiquiti has disclosed 25 security vulnerabilities affecting various products, including injection and denial-of-service (DoS) flaws. The specific details and affected products were not elaborated upon in the provided information, beyond the general categories of vulnerabilities. This disclosure highlights potential security risks for users of Ubiquiti devices. No bug bounty payout amounts were mentioned.
2026-07-07API SecurityCritical Vulnerability in GCP Dialogflow Allows Attackers to Inject Malicious CodeA critical vulnerability has been discovered in Google Cloud Platform's Dialogflow that allows attackers to inject malicious code. This flaw could enable unauthorized access and manipulation of sensitive data within applications built on Dialogflow. The exact payout amount for reporting this vulnerability is not specified in the provided content.
2026-07-07Supply ChainSophos Flags Vect-TeamPCP Cybercriminal Ransomware AllianceAlliance between ransomware-as-a-service group Vect and credential theft specialist TeamPCP represents a significant evolution in cybercrime, combining TeamPCP's expertise in supply chain compromise and harvesting credentials from tools like Trivy and Checkmarx with Vect's RaaS infrastructure. This partnership, confirmed by Sophos, creates an efficient attack pipeline enabling rapid ransomware deployment, lowering the barrier for less skilled attackers and accelerating campaign sophistication.
2026-07-07AIBeyond Prompt InjectionLibrary for verifying generative AI agent actions, shifting security from input filtering to deterministic policy enforcement. It emphasizes validating agent proposals against external, auditable rules before execution, rather than attempting to prevent prompt injection at the model level. This approach addresses risks like indirect prompt injection and data exfiltration demonstrated in scenarios such as the ForcedLeak vulnerability in Salesforce's Agentforce platform, moving security decisions to a place where adversaries have limited freedom.
2026-07-07RCEAttackers exploit critical Adobe ColdFusion vulnerability (CVE-2026-48282)Analysis of CVE-2026-48282, a critical path traversal vulnerability in Adobe ColdFusion, details how attackers exploit this flaw to achieve arbitrary code execution by uploading malicious files via the Remote Development Services (RDS) feature. Exploitation attempts were detected shortly after WatchTowr researchers published analysis, highlighting the immediate threat posed by this vulnerability, especially when RDS is enabled and unauthenticated. Recommended fixes include upgrading to the latest ColdFusion updates and hunting for indicators of compromise.
2026-07-07SSRFInfoSec Community: New Writeup Alert! "The HTTP 303 SSRF Hack : From Python HTTP Client Defaults to AWS Credential Exfiltration." by Alvin Ferdiansyah is now live on IW! Check it out here: #oauth #python #ssrf #bugbountywriteupAlvin Ferdiansyah's new writeup, "The HTTP 303 SSRF Hack: From Python HTTP Client Defaults to AWS Credential Exfiltration," is now available. The analysis explores how default Python HTTP client behaviors can lead to SSRF vulnerabilities, ultimately enabling AWS credential exfiltration. This bug bounty writeup is a valuable resource for those interested in OAuth, Python security, and SSRF exploit techniques.
2026-07-07Supply ChainSoftware transparency becomes cyber-security prioritySurvey of software supply chain security trends, highlighting the accelerated adoption of Software Bills of Materials (SBOMs) driven by upcoming EU Cyber Resilience Act (CRA) regulations. This shift moves beyond traditional vulnerability management to prioritize full transparency of software components, including open-source libraries and third-party dependencies, to better identify risks and respond to emerging threats before the CRA's December 2027 effective date.
2026-07-07RCESuspected China-Aligned Hackers Exploit Roundcube Flaws Against UniversitiesLibrary exploiting N-day Roundcube vulnerabilities like CVE-2024-42009 and CVE-2025-49113, enabling credential theft and post-exploitation via VShell or SquareShell. This toolkit, tracked as UNK_MassTraction and potentially shared among China-nexus clusters, has targeted academic institutions for reconnaissance and network pivoting. The IceCube payload, written in JavaScript and Go, exhibits advanced evasion tactics by re-attempting exploitation on user interaction changes.
2026-07-07API SecurityGemini Live API Flaw Lets Attackers Inject Code Execution Through Unconstrained TokensA critical flaw in the Gemini Live API allowed attackers to achieve code execution by injecting unconstrained tokens. This vulnerability, identified by researchers, could have enabled malicious actors to compromise systems. The specific bounty payout for this discovery is not mentioned in the provided content.
2026-07-07RCEGoogle Gemini Live API Flaw Allows RCE via Unconstrained Ephemeral TokensA critical flaw in the Google Gemini Live API allowed for Remote Code Execution (RCE) by exploiting unconstrained ephemeral tokens. This vulnerability enabled attackers to potentially gain unauthorized access and control over systems utilizing the Gemini Live API. Further details about the exploit and its impact can be found at the provided link.
2026-07-07SSTIPicoCTF Web Exploitation Easy Category Web Challenge [SSTL 1]Writeup detailing Server Side Template Injection (SSTI) techniques used to exploit a PicoCTF web challenge. The article explains how to identify template engines like Jinja2 by testing inputs such as `{{ 8*8 }}` and then leverages object traversal through `{{ config }}`, `{{ request }}`, and `{{ self }}` to access Python internals. It demonstrates how to use `__init__.__globals__.__builtins__.__import__('os').popen('ls').read()` and similar payloads to execute system commands and read files like `flag`, highlighting the importance of understanding template engine processing and object structures for deeper exploitation.
2026-07-07Bug BountyHow I Found a Data Deletion Bypass via Subdomain SynchronizationWriteup detailing a business logic vulnerability bypass on interconnected subdomains. A Moderator role, lacking delete permissions on the primary account management subdomain, could initiate a full organizational group deletion by exploiting synchronization flaws in the secondary task scheduling subdomain. This allowed for a cascade deletion affecting both platforms, a privilege intended only for Admin or Owner roles. The discovery highlights how understanding application workflows and reading developer documentation can uncover critical security gaps.
2026-07-07Bug BountyHow I Found a Critical OAuth Misconfiguration That Led to Account TakeoverWriteup detailing an account takeover vulnerability found via chaining multiple OAuth misconfigurations. The exploit leveraged open client registration, an authorization endpoint lacking authentication enforcement, and PKCE validation weaknesses that allowed token exchanges without client secrets. Additionally, wildcard CORS expanded attack vectors, while Google SSO auto-provisioning provided context for user authentication.
2026-07-07RCERCE via Gemini Live AI Voice Session Misconfiguration.Library for exploiting RCE vulnerabilities in applications integrating Google's Gemini Live AI Voice sessions by injecting client-controlled setup frames. The vulnerability arises when ephemeral tokens, used for browser-facing WebSocket connections to endpoints like `BidiGenerateContentConstrained`, are issued without proper `live_connect_constraints`. This misconfiguration allows attackers to control session parameters, including the model, system instruction, and critically, the `tools` field, enabling the injection of code execution capabilities. The writeup details how the official Gemini Live API example repository promotes this insecure pattern by omitting the `bidi_generate_content_setup` from token creation.
2026-07-07XXEThe File That Answered Back — XXE Hidden in Cell A2Writeup detailing an XML External Entity (XXE) vulnerability discovered in an Excel file upload endpoint. The exploit bypasses Imperva WAF rules by hiding the `DOCTYPE` declaration within the XML structure of an `.xlsx` file, which is essentially a ZIP archive containing XML documents. The writeup explains how to manually construct a valid XLSX file with a malicious XML parser instruction to read server-side files, ultimately returning sensitive data within the application's JSON response.
2026-07-07Bug BountyMass Assignment and the Identity Drift: From Profile Edit to Insurance TakeoverWriteup detailing Mass Assignment vulnerabilities that enable "identity drift" by allowing attackers to alter sensitive profile fields like legal name, date of birth, and government ID number without invalidating the verified status. This can lead to downstream impacts, such as falsely linking third-party insurance records by manipulating matching attributes like date of birth, effectively granting unauthorized financial access.
2026-07-07Bug BountyMastering curl Commands Bug Bounty Hunter's GuideGuide to mastering curl commands for bug bounty hunting, focusing on advanced techniques beyond basic POST requests. It covers real-world workflows like fuzzing, WAF bypasses, pipeline automation, and creative exploitation. Specific examples include subdomain discovery using Certificate Transparency logs with `curl` and `jq`, and header fingerprinting to gather intelligence on target applications.
2026-07-07IDORPredicting MongoDB ObjectId() continuously in Rocket.ChatWriteup detailing a vulnerability in Rocket.Chat, #3687142, where unauthenticated users can access any uploaded file by predicting its MongoDB ObjectId(). The article explains how the ObjectId() is composed of a timestamp, machine/process ID, and a counter, allowing attackers to enumerate valid file IDs and bypass authorization checks through the Livechat functionality.
2026-07-07RCEMicrosoft Edge High-Severity Vulnerability Allows Remote Code ExecutionMicrosoft has addressed a high-severity vulnerability in Microsoft Edge that could allow for remote code execution. This flaw, if exploited, enables attackers to run malicious code on a user's system without their knowledge or consent. While the severity is highlighted, no specific bug bounty payout amount is mentioned in the provided content. Users are advised to update their Edge browsers promptly to patch this security risk.
2026-07-07RCEMicrosoft Edge Use-After-Free Flaw Lets Attackers Execute Code RemotelyA critical use-after-free vulnerability in Microsoft Edge has been disclosed, allowing attackers to remotely execute code on vulnerable systems. This flaw could potentially lead to complete system compromise. While a specific payout amount for reporting this bug is not mentioned in the provided content, the severity of the vulnerability highlights the ongoing importance of security research and patching for web browsers. Users are advised to ensure their Microsoft Edge browser is updated to the latest version to mitigate this risk.
2026-07-07API SecurityChasing Zero-Day Vulnerabilities via the Anchore Enterprise APIThis content, titled "Chasing Zero-Day Vulnerabilities via the Anchore Enterprise API," suggests a focus on identifying previously unknown (zero-day) security flaws within the Anchore Enterprise API. The provided link likely leads to a detailed explanation or demonstration of techniques used for this pursuit. The core theme revolves around proactive vulnerability research and the exploitation of a specific API for discovering critical security issues. No bug bounty payout amount is mentioned.
2026-07-07AI8 Best Agentic AI Security Companies for Prompt Injection & Secret Sprawl DefenseLibrary for agentic AI security vendors, this resource spotlights eight companies providing guardrails against prompt injection and secret sprawl, including Entro Security for identity governance and secret scanning, Palo Alto Networks for extending SOC visibility, Trend Micro Vision One with DLP capabilities, and Noma Security offering a control plane with a self-driving red team. The selection process involved mapping the market, applying strict inclusion rules, and scoring vendors on criteria such as prompt-injection defense, data-leak prevention, and real-time detection, prioritizing those proven in live environments.
2026-07-07RCESharePoint Vulnerability CVE-2026-45659 Exploited [2026]Writeup of CVE-2026-45659, a SharePoint RCE vulnerability, details how a flaw initially assessed as "less likely to be exploited" by Microsoft became a federally mandated fix by CISA within weeks. The deserialization bug requires only "Site Member" privileges and low complexity, making authenticated access a potent attack vector. This "n-day" exploit highlights the danger of unpatched on-premises SharePoint servers, impacting sectors like government and finance, and underscores the urgency of CISA's Known Exploited Vulnerabilities catalog.
2026-07-06RCEMore than just data: The hidden security risks in Jupyter notebooksMore than just data: The hidden security risks in Jupyter notebooks https://ift.tt/bWszvx6
2026-07-06RCEAdobe ColdFusion flaw CVE-2026-48282 now exploited in the wildWriteup of CVE-2026-48282, a critical path traversal vulnerability in Adobe ColdFusion versions 2025.9, 2023.20, and earlier. This unauthenticated flaw allows remote attackers arbitrary code execution and is actively exploited in the wild, with attacks originating from India. Adobe urges immediate installation of security updates. This follows recent exploitation trends, including CISA's inclusion of CVE-2017-3066 and a coordinated campaign exploiting numerous ColdFusion flaws.
2026-07-06Supply ChainNorth Korean PolinRider supply chain attack targets 108 unique reposAnalysis of the PolinRider supply chain attack, linked to North Korea's Lazarus group, details how adversaries compromise maintainer accounts across 108 unique open-source repositories. The attack injects obfuscated code into trusted packages, with a hidden loader retrieving payloads from blockchain infrastructure to install remote-access trojans and information stealers. This campaign targets developer secrets, cloud tokens, and cryptocurrency wallets, expanding beyond npm to ecosystems like Go modules and Packagist.
2026-07-06XSSMultiple IBM WebSphere Vulnerabilities Enable XSS and Path Traversal AttacksMultiple vulnerabilities have been discovered in IBM WebSphere that could allow attackers to perform cross-site scripting (XSS) and path traversal attacks. These flaws impact various versions of the software, potentially exposing sensitive data and enabling malicious code execution. Organizations using IBM WebSphere should prioritize applying the latest security patches and updates to mitigate these risks.
2026-07-06RCEMicrosoft Edge Vulnerability Allows Remote Attacker to Execute Arbitrary CodeA critical vulnerability in Microsoft Edge has been disclosed, potentially allowing remote attackers to execute arbitrary code. This means a hacker could exploit this flaw to gain control of a user's system without their knowledge. The exploit likely targets a weakness within the browser's rendering engine or JavaScript execution. Further details on the specific vulnerability and its impact are available at the provided link. No bug bounty payout amount is mentioned in the content.
2026-07-06Supply ChainNorth Korean Hackers Target Open Source Developers in Supply Chain AttacksAnalysis of PolinRider, a North Korean supply chain campaign targeting open source developers since December 2025. The operation injects JavaScript loaders into compromised GitHub repositories, distributing the DEV#POPPER RAT and OmniStealer. Attacked ecosystems include NPM, Packagist, Go modules, and Chrome extensions, with over 160 malicious artifacts identified. This campaign, linked to Contagious Interview operations, relies on tampering with maintainer accounts and Git history rewriting to disguise malicious code. Affected environments and credentials should be treated as compromised and remediation performed from a clean system.
2026-07-06RCEVeeam Backup BinaryFormatter Flaw Enables Remote Code ExecutionVeeam Backup BinaryFormatter Flaw Enables Remote Code Execution https://ift.tt/XzVLFtl
2026-07-06Supply Chainnpm Supply Chain Attack: North Korea Hits Mastra AI [2026]Analysis of the @mastra npm supply chain attack reveals North Korea's Sapphire Sleet (BlueNoroff, APT38) compromised over 140 packages via a stolen maintainer account. The attackers leveraged a typosquatted dependency, `easy-day-js`, within a `postinstall` script to inject malware. This implant disabled TLS verification, contacted C2 infrastructure, deployed a persistent implant, and targeted cryptocurrency wallets like MetaMask, Phantom, and Coinbase Wallet, along with cloud credentials, demonstrating a significant maturation in nation-state-sponsored open-source malware campaigns.
2026-07-06Supply ChainSupply Chain Attacks Have Become Self-ReinforcingSupply chain attacks are increasingly self-reinforcing, creating a vicious cycle. Attackers exploit vulnerabilities in one component, which then compromises others down the chain. This means a single breach can have cascading effects, impacting numerous downstream systems and organizations. The interconnectedness of modern software and infrastructure amplifies this problem, making it harder to detect and mitigate these sophisticated threats.
2026-07-06SSRFDaily CyberSecurity: Four Fluentd vulnerabilities are fixed in v1.19.3 including a 9.8 RCE (CVE-2026-44024) and SSRF (CVE-2026-44161). Patch now. #Fluentd #RCE #SSRF #CVE #Cybersecurity #InfosecDaily CyberSecurity: Four Fluentd vulnerabilities are fixed in v1.19.3, including a 9.8 RCE (CVE-2026-44024) and SSRF (CVE-2026-44161). Patch now. #Fluentd #RCE #SSRF #CVE #Cybersecurity #Infosec http...
2026-07-06XSSIBM WebSphere Application Server Hit by Critical XSS and Path Traversal VulnerabilitiesIBM WebSphere Application Server is affected by critical vulnerabilities. These include Cross-Site Scripting (XSS) and path traversal flaws. The XSS vulnerability allows attackers to inject malicious scripts into web pages viewed by other users, potentially leading to session hijacking or data theft. The path traversal vulnerability could enable unauthorized access to sensitive files and directories on the server. Organizations using IBM WebSphere Application Server should update to the latest secure versions to mitigate these risks.
2026-07-06Supply ChainFBI warns developers over TeamPCP software supply chain attacksThe FBI has issued a warning to developers regarding software supply chain attacks involving the TeamPCP tool. These attacks exploit vulnerabilities within the development process to compromise software. While the provided content does not mention a specific bug bounty payout amount, the alert highlights the significant threat posed by these sophisticated attacks to the integrity of software and the security of end-users. Developers are urged to implement robust security measures to mitigate these risks.
2026-07-06SQLiSourceCodester Timetabling: SQL Injection vulnerability CVE-2026-14770A SQL injection vulnerability, identified as CVE-2026-14770, has been discovered in SourceCodester Timetabling. This flaw allows attackers to potentially execute arbitrary SQL commands on the database. Further details regarding the exploit and its impact can be found at the provided link. No bug bounty payout amount was specified in the content.
2026-07-06XSSCritical IBM WebSphere Flaws Expose Servers to XSS and Path Traversal AttacksCritical vulnerabilities have been discovered in IBM WebSphere Application Server, enabling attackers to execute Cross-Site Scripting (XSS) and path traversal attacks. These flaws could allow for unauthorized access to sensitive data and the execution of malicious code on vulnerable servers. Organizations utilizing IBM WebSphere are strongly advised to apply available security patches and updates to mitigate these risks and protect their environments. Further details on the specific vulnerabilities and remediation steps can be found at the provided link.
2026-07-06SSRFDaily CyberSecurity: HawkTrace publicly disclosed Microsoft Exchange vulnerability CVE-2026-45504 with PoC exploit code. The SSRF flaw reads arbitrary files. Patch now. #MicrosoftExchange #CVE202645504 #SSRF #Cybersecurity #PoC #InfosecDaily CyberSecurity: HawkTrace publicly disclosed Microsoft Exchange vulnerability CVE-2026-45504 with PoC exploit code. The SSRF flaw reads arbitrary files. Patch now. #MicrosoftExchange #CVE20264550...
2026-07-06SSRFDaily CyberSecurity: HawkTrace publicly disclosed Microsoft Exchange vulnerability CVE-2026-45504 with PoC exploit code. The SSRF flaw reads arbitrary files. Patch now. #MicrosoftExchange #CVE202645504 #SSRF #Cybersecurity #PoC #InfosecDaily CyberSecurity: HawkTrace publicly disclosed Microsoft Exchange vulnerability CVE-2026-45504 with PoC exploit code. The SSRF flaw reads arbitrary files. Patch now. #MicrosoftExchange #CVE20264550...
2026-07-06OSINTThe Internet’s Dirty Little Secret: Anyone Can Investigate Anyone — and Here Are 20 Free Tools to…Tools for OSINT investigations, offering 20 free online resources that allow individuals to legally gather information on anyone. These platforms enable users to conduct digital investigations comparable to those used by professionals and intelligence agencies, focusing on publicly available data.
2026-07-06ReconAdversaryGraph v5.0: From CTI Mapping to Attack Simulation and SIEM ValidationLibrary for CTI-to-detection workflow automation, AdversaryGraph v5.0 enhances attack simulation and SIEM validation. It integrates threat intelligence analysis, MITRE ATT&CK mapping, IOC enrichment, malware analysis, attack-surface mapping, and AI-assisted reporting. New in v5.0, the Attack Simulation module allows analysts to run controlled lab scenarios based on TTPs, inspect target telemetry, forward logs to a SIEM collector, and utilize an AI assistant for multi-phase attack chain drills, directly linking observed behaviors to detection engineering.
2026-07-06AuthZI Found an Unauthenticated Attachment Disclosure Bug in a WordPress Support Plugin — and a…Writeup detailing an unauthenticated attachment disclosure vulnerability in a WordPress support plugin. The research, conducted in an isolated Docker environment, reveals that a specific REST API endpoint lacks proper authorization checks, allowing anonymous users to access sensitive customer attachments like invoices and personal records. The author validates the vulnerability through proof-of-concept requests and MD5 hash comparisons, highlighting the potential for widespread data exfiltration.
2026-07-06Bug BountyTryHackMe — Bounty Hacker: The FTP Server Was Talking. I Just Listened.Writeup detailing a TryHackMe room, "Bounty Hacker: The FTP Server Was Talking. I Just Listened." This walkthrough focuses on practical exploitation, starting with anonymous FTP access on port 21 to obtain a username (`lin`) and a password list (`locks.txt`). It then proceeds to use Hydra for an SSH brute-force attack against port 22, successfully gaining a user shell. Privilege escalation is achieved by leveraging `tar`'s `checkpoint-action` capability, as documented on GTFOBins, to execute commands as root and retrieve the final flag.
2026-07-06AuthenticationProtocols and Servers 2 TryHackMe WriteupLibrary detailing foundational attacks against network protocols, including sniffing with tools like tcpdump and Wireshark, Man-in-the-Middle (MITM) attacks using Bettercap and Responder, and password attacks. The resource emphasizes that cleartext protocols like POP3, FTP, and HTTP are insecure by design, highlighting vulnerabilities where credentials can be exposed over internal networks, legacy systems, and wireless connections. It also covers mitigations such as TLS encryption, network segmentation, and zero-trust principles.
2026-07-06Bug BountyMr Robot CTF Walkthrough -TryHackMe DetailedLibrary detailing a CTF walkthrough, starting with web enumeration via robots.txt to find `key-1-of-3.txt` and `fsocity.dic`. It then covers Nmap scans, Gobuster directory brute-forcing to discover WordPress, and exploiting a Base64-encoded string in the `/license` page's source for WordPress credentials. The entry explains obtaining a reverse shell through the WordPress Theme Editor, cracking an MD5 hash for the `robot` user, and performing privilege escalation by abusing the SUID bit on the `/usr/local/bin/nmap` binary to gain root access.
2026-07-06Bug BountyTryHackMe CTF Writeup of Hidden Deep Into my HeartWriteup detailing a TryHackMe CTF challenge involving web enumeration. The process begins with analyzing `robots.txt` and `sitemap.xml`, leading to the discovery of a hidden directory. The tool `gobuster` is then employed for further directory enumeration, uncovering an administrator login page. Exploitation involves identifying a password clue within the `robots.txt` comments and successfully logging in to retrieve the flag.
2026-07-06API SecurityJuiceFS Authentication Bypass via pprof and metrics Endpoints (CVE-2026-59092)Writeup detailing CVE-2026-59092, an authentication bypass in JuiceFS (versions prior to 1.3.1) that exploits improper handler registration on `http.DefaultServeMux`. Attackers can access sensitive debug and metrics endpoints, including `/debug/pprof/cmdline`, to retrieve database credentials embedded in the process command line, leading to full read/write access to filesystem metadata. Other pprof handlers may reveal internal state or enable denial of service.
2026-07-06RCEMicrosoft Edge Multiple VulnerabilitiesWriteup of multiple Microsoft Edge vulnerabilities, including CVE-2026-13774 through CVE-2026-14156 and CVE-2026-45488 through CVE-2026-58300. These issues could allow remote attackers to achieve remote code execution, denial of service, information disclosure, security restriction bypass, data manipulation, and spoofing. Users should update to Microsoft Edge version 150.0.4078.48 or later to mitigate these risks.
2026-07-05SSRFTasfiul Hedayet: Alhamdulillah I have reported my 1st SSRF findings on @Hacker0x01 today 05.07.26 Thanks @ruh4nX bro Every valid finding boost your level and confidence. If bug exists then doesn't matter if it's out of scope. Report it mistakenly tested scope :3 #SSRF #HackingTasfiul Hedayet has successfully reported their first Server-Side Request Forgery (SSRF) vulnerability on HackerOne. They encourage reporting bugs regardless of scope, as valid findings boost confidence and skill. This achievement was shared with thanks to @ruh4nX. The report was made on July 5, 2026.
2026-07-05SSRFHugo | DevOps | Cybersecurity : #CVE-2026-22874 - Critical #SSRF in #Gitea =1.26.2. Incomplete webhook/migration filtering. #CVSS 9.6. Upgrade immediately. #CVEAlert #DevSecOps #DevOps #sysadmin #infosec More free detailed info:A critical Server-Side Request Forgery (SSRF) vulnerability, CVE-2026-22874, has been discovered in Gitea version 1.26.2. The issue stems from incomplete filtering of webhooks and migrations, resulting in a high CVSS score of 9.6. Users are strongly advised to upgrade immediately to mitigate this security risk. This alert is part of ongoing cybersecurity and DevOps awareness efforts.
2026-07-05SSRFCYBER MIND SPACE: Your firewall is useless... If your own server becomes the attacker. That's SSRF. #CyberSecurity #SSRF #AppSecServer-Side Request Forgery (SSRF) is a critical cybersecurity vulnerability where an attacker exploits an application to make the server send requests to an unintended location. This bypasses firewalls, as the malicious request originates from within the trusted network. Attackers can use SSRF to access internal systems, cloud metadata, or even trigger actions on other servers. The content highlights that even with robust firewalls, an SSRF vulnerability can render them ineffective if the server itself becomes the attacker's tool.
2026-07-05RCEActive Exploitation Alert: Critical Microsoft SharePoint Server RCE Vulnerability CVE-2026-45659 Added to CISA KEV CatalogAnalysis of CVE-2026-45659, a critical Microsoft SharePoint Server RCE vulnerability, details its exploitation via deserialization of untrusted data (CWE-502). Adversaries, including the Storm-2603 group, leverage this for initial access, deploying tools like Velociraptor and Cloudflare Tunnels for persistence. MITRE ATT&CK techniques T1190 and T1078 are observed. Added to CISA's KEV catalog, this flaw affects multiple SharePoint versions and targets diverse sectors globally. Mitigation requires immediate patching and auditing of user permissions.
2026-07-05Supply ChainActive Exploitation Alert: North Korean PolinRider Supply Chain Attack Targets npm Packagist Go Modules and Chrome ExtensionsWriteup detailing the PolinRider supply chain attack, attributed to North Korean actors like Lazarus Group and APT37, that targets npm, Packagist, Go modules, and Chrome extensions. It highlights the injection of obfuscated malware loaders into legitimate packages, using techniques like anti-dated commits and blockchain RPC endpoints for C2. The writeup mentions specific compromised packages such as tailwindcss-style-animate and DEV#POPPER, OmniStealer payloads, and recommends tools like Socket.dev PolinRider Tracker for detection and mitigation.
2026-07-05RCESharePoint Server Actively Exploited: CISA Orders Patch Before Ransomware Actors StrikeLibrary for detecting and mitigating deserialization vulnerabilities, specifically CVE-2026-45659 affecting on-premises Microsoft SharePoint Server. This vulnerability, a CWE-502 deserialization of untrusted data, allows authenticated users with Site Member access to trigger remote code execution. The library aids in identifying compromised servers by monitoring anomalous process trees, suspicious IIS logs, unauthorized ASPX files, and credential anomalies. It also provides guidance on temporary mitigations like restricting access, network segmentation, and WAF rules while emphasizing the critical need to apply Microsoft's out-of-band patch.
2026-07-05XSSAttackers Can Inject Malicious Scripts Through VMware XSS FlawsVMware products are vulnerable to Cross-Site Scripting (XSS) attacks, allowing attackers to inject malicious scripts. This means unauthorized users could potentially execute harmful code within a user's browser session, leading to various security risks like data theft or account compromise. Further details and the specific impact are outlined in the provided link.
2026-07-04CSRFCSRF Attack Explained: Mechanics Real Exploits and How to Test for ItLibrary for understanding and testing CSRF attacks, explaining how they exploit browser cookie handling to force unwanted actions on authenticated users. It details the mechanics, preconditions, and real-world exploits like router DNS hijacking and uTorrent configuration flaws, contrasting CSRF with XSS. The library also covers defensive strategies including synchronizer tokens, signed double-submit cookies, SameSite cookies, and pre-session tokens for login CSRF, along with manual testing techniques.
2026-07-04SSRFZOWEH: THE ATTACK CHAIN: 1. Whitelist blocks direct internal IPs 2. Found open redirect: /product/nextProduct?path=... 3. Redirect to: 4. Stock checker follows redirect 5. Admin panel accessed successfully! #SSRF #InfoSecZOWEH researchers uncovered an attack chain bypassing an internal IP whitelist. They exploited an open redirect vulnerability in the `/product/nextProduct?path=` parameter. This redirect was then followed by a stock checker, allowing them to access the admin panel successfully. The techniques used highlight the risks of open redirect vulnerabilities when coupled with internal services.
2026-07-04SSRFZOWEH: SSRF LAB 5 SOLVED: SSRF with filter bypass via open redirection Goal: Bypass whitelist to access internal admin panel Method: Chain SSRF with open redirect vulnerability #SSRF #BugBountyThis write-up details the solution to ZOWEH's SSRF Lab 5, which involves bypassing a whitelist to access an internal admin panel. The method used is chaining a Server-Side Request Forgery (SSRF) vulnerability with an open redirection flaw. This technique successfully circumvented the whitelist's restrictions. The post is tagged with #SSRF and #BugBounty, indicating its relevance to security research and bug bounty hunting.
2026-07-04SecretsGitHub Secret Scanning Now Watches All Public Repos for Leaked Enterprise KeysLibrary updates now expand GitHub's secret scanning to all public repositories, addressing the crisis of leaked enterprise keys, particularly those generated by AI coding agents, which surge 81% according to GitGuardian. This feature, Public Monitoring, attributes found credentials back to their originating enterprise using verified domain matching and GitHub's native identity graph, bridging the gap where traditional org-scoped scanners failed to detect leaks from personal accounts or open-source contributions. This retrospective, perimeter-agnostic layer complements existing push protection and AI coding agent scanning, enhancing defenses against credential exposure across platforms like GitHub.
2026-07-04RCEWatchGuard Firebox Patches Third Critical IKEv2 RCE in 10 Months T15/T35 Still ExposedWriteup detailing CVE-2026-13368, a critical pre-authentication remote code execution vulnerability in WatchGuard Firebox appliances. This flaw, stemming from a race condition and use-after-free in the IKEv2 LDAP authentication path, allows unauthenticated attackers network access to achieve arbitrary code execution on the `iked` daemon. Notably, this is the third critical flaw in the same daemon within ten months, following CVE-2025-9242 and CVE-2025-14733. Patches are available for newer Fireware OS versions, but T15 and T35 models on the 12.5.x branch remain unpatched, and Fireware OS 11.x is end-of-life.
2026-07-04Supply ChainNorth Koreas Lazarus Group Hid a Full RAT in Six Rollup Polyfill npm PackagesLibrary that catalogs a sophisticated npm supply chain attack by North Korea's Lazarus Group. This campaign disguised a full Remote Access Trojan (RAT) within six fake Rollup polyfill packages. Unlike previous attacks targeting install scripts, this malware executes at import time, bypassing npm v12's default security measures. The attack employs a multi-stage payload delivery mechanism, using Base64-encoded commands and dynamically fetched code from remote URLs to evade static analysis. The RAT is designed to exfiltrate credentials, capture screenshots, and execute arbitrary commands, with its techniques showing overlap with prior DPRK campaigns.
2026-07-04SSRFZOWEH: BLACKLIST vs WHITELIST - MASTERED: | Filter | Bypass Method | |--------|---------------| | Blacklist | Encoding IP variations | | Whitelist | URL parsing tricks fragments | Lesson: Whitelists can be bypassed with careful URL manipulation #SSRF #CyberSecurityThis content explains two security filtering methods: blacklisting and whitelisting. Blacklists block known malicious inputs, which can be bypassed using encoding or IP variations. Whitelists, on the other hand, only allow specific inputs. However, even whitelists can be vulnerable to bypass techniques, particularly through clever URL parsing tricks and fragments. The key takeaway is that whitelists are not foolproof and can be circumvented with careful manipulation, highlighting a vulnerability in Server-Side Request Forgery (SSRF) attacks.
2026-07-04SSRFZOWEH: HOW IT WORKS: 1. Server validates against whitelist 2. # (fragment) is ignored in validation 3. But # tells server to go to localhost 4. Admin panel accessed successfully #SSRF #WebSecurityThis post details a Server-Side Request Forgery (SSRF) vulnerability in ZOWEH. The server validates requests against a whitelist, but it incorrectly ignores the fragment identifier (#). This allows an attacker to craft a malicious URL that bypasses the whitelist by using the # to point the server to localhost. As a result, the attacker successfully accessed the admin panel.
2026-07-04SSRFZOWEH: THE BYPASS: Whitelist checks: Used: http://localhost%2523@stock.weliketoshop.net/admin Double encoding (# %2523) tricks the parser #SSRF #InfoSecA security researcher, ZOWEH, discovered a bypass of whitelist checks through a Server-Side Request Forgery (SSRF) vulnerability. The exploit involves double encoding the '#' character as '%2523'. This technique tricks the parser, allowing access to a restricted `admin` endpoint at `stock.weliketoshop.net` via a `localhost` URL. The researcher shared this finding on Twitter. No bug bounty payout amount was mentioned.
2026-07-04SSRFZOWEH: SSRF LAB 4 SOLVED: SSRF with whitelist-based input filter (EXPERT) Goal: Bypass whitelist to access localhost/admin Filter: Only allows Bypass: Double URL-encoded fragment (#) #SSRF #BugBountyZOWEH's SSRF LAB 4, an expert-level challenge, required bypassing a whitelist-based input filter to access localhost/admin. The filter restricted input, but a double URL-encoded fragment (#) was found to be an effective bypass. This technique enabled successful exploitation of the Server-Side Request Forgery vulnerability.
2026-07-04SSRFZOWEH: BLACKLIST vs WHITELIST (Key Lesson): BLACKLIST = Block known bad inputs Bypassable with encoding variations WHITELIST = Allow only known good inputs More secure harder to bypass SSRF testing: Always try multiple encoding techniques! #SSRF #CyberSecurityThe key lesson from ZOWEH is the difference between blacklisting and whitelisting for security. Blacklisting, which blocks known bad inputs, is vulnerable to bypasses through encoding variations. Whitelisting, conversely, allows only known good inputs, making it a more secure approach that is harder to circumvent. For Server-Side Request Forgery (SSRF) testing, it's recommended to always employ multiple encoding techniques.
2026-07-04SSRFZOWEH: THE BYPASS: Blacklist blocked: localhost 127.0.0.1 admin Bypass used: Decimal IP: 127.1 URL encoding: %61dmin Result: #SSRF #InfoSecA security researcher, ZOWEH, discovered a bypass method that circumvents a blacklist intended to block access to "localhost," "127.0.0.1," and "admin." The bypass utilizes a decimal IP address representation of "127.1" and URL encoding for "admin" as "%61dmin." This technique allows for Server-Side Request Forgery (SSRF) vulnerabilities, as indicated by the researcher's result. The information was shared on social media. No bounty payout amount was mentioned.
2026-07-04SSRFZOWEH: SSRF LAB 3 SOLVED: SSRF with blacklist-based input filter Goal: Bypass blacklist to access http://localhost/admin Challenge: Blocks "localhost" "127.0.0.1" and "admin" Solution: Alternative IP formats URL encoding #SSRF #BugBountyThis SSRF challenge involved bypassing a blacklist filter to access `http://localhost/admin`. The filter blocked direct mentions of "localhost", "127.0.0.1", and "admin". The solution was to utilize alternative IP address formats and URL encoding to circumvent the restrictions and successfully access the target resource.
2026-07-04Supply ChainHackers Just Showed How Fragile the AI Software Supply Chain Really IsAnalysis of the AI software supply chain security vulnerability, highlighted by the TeamPCP compromise of LiteLLM using the Trivy scanner, reveals critical threats. Poisoned AI models, which can evade standard safety training like reinforcement learning from human feedback and adversarial training, pose a significant risk. Microsoft Research's "Trigger in the Haystack" paper identifies a potential detection method, the Double Triangle Attention Pattern, against this escalating threat landscape where AI models are now the first link in the supply chain, not just the code.
2026-07-04AuthZCertified AD Red Team Specialist (AD-RTS): Full Exam Write-UpWriteup detailing a full methodology for the Certified AD Red Team Specialist (AD-RTS) exam, covering two distinct adversary paths. Path 1 begins with zero credentials and involves DNS zone transfers for enumeration, ASREPRoasting via GetNPUsers to gain SQL Server access, privilege escalation with GodPotato to SYSTEM, and credential harvesting using MiniDump. This leads to abusing AD Certificate Services (ADCS) via ESC1, leveraging certipy-ad, to request a certificate impersonating Domain Admin. Path 2 focuses on escalating from a low-privilege foothold on a public-facing web server.
2026-07-04AITryHackMe: Checkpoint WalkthroughWalkthrough of a TryHackMe CISO challenge assessing four code review model candidates for production readiness. It details the evaluation telemetry for Candidates B (code_reviewer_lite.safetensors), C (pr_analyzer_v3.h5) with its detected LAMBDA LAYER and suspicious code execution, and D (api.reviewsvc.io) with its unverified endpoint and absent compliance certificate. The assessment involves examining Candidate A's file access to /etc/passwd and its disabled security_review_flag, identifying the CommunityReview policy template, and discovering the supply chain flag THM{supp1y_ch41n_0wn3d}.
2026-07-04DeserializationTryHackMe — Pickle Rick: Rick Left the Door Open. I Just Walked In.Writeup of the TryHackMe "Pickle Rick" room, detailing how credentials and privilege escalation were found in plain sight. The room features a username leaked in HTML comments, a password in robots.txt, and a direct web shell granting unrestricted sudo access for the www-data user, allowing immediate root access.
2026-07-04Bug BountyTryHackMe — Simple CTF: The Note That Gave Everything AwayWriteup of TryHackMe's "Simple CTF" room, detailing a straightforward penetration test. It highlights how reconnaissance on an anonymous FTP server, revealing a weak password, coupled with identifying a CMS Made Simple 2.2.8 installation vulnerable to CVE-2019–9053, leads to an initial foothold. Privilege escalation is achieved by exploiting sudo permissions for `/usr/bin/vim`, enabling a shell escape to gain root access.
2026-07-04Supply ChainI found North Korean (DPRK) malware hiding in my tailwind.config.jsLibrary for detecting North Korean (DPRK) malware injected into Node.js projects, specifically found in `tailwind.config.js` files. This malware uses obfuscated code and attempts to exfiltrate data to `api.trongrid.io`. The library highlights the risks of compromised build tools and starter templates, emphasizing the need for thorough inspection of project configuration files.
2026-07-04AuthZPost-Compromise Attacks in AD: Credential Validation with CrackMapExecWriteup detailing post-compromise Active Directory attacks, focusing on credential validation using CrackMapExec. The article demonstrates using a compromised domain user credential, obtained via LLMNR poisoning, to authenticate against other machines on the network. It covers using CrackMapExec to check credentials, dump local SAM hashes, and leverage the Impacket suite (secretsdump, psexec.py) for further access, along with a brief mention of hash cracking with Hashcat.
2026-07-04AuthenticationDemonstrating LLMNR Poisoning in Active DirectoryWriteup demonstrating LLMNR poisoning in an Active Directory lab, leveraging the Link Local Multicast Name Resolution protocol's fallback for DNS failures. An attacker can intercept authentication requests for mistyped or non-existent hostnames, capturing NTLM password hashes. The article details using Responder for poisoning and Hashcat with mode 5600 to crack NTLMv2 hashes from a Windows 2016 Server and Windows 10 Enterprise environment.
2026-07-04AuthZHost & Network Penetration Testing: Exploitation CTF 2 — eJPT (INE)Walkthrough of eJPT Exploitation CTF 2, chaining SMB brute-forcing for user tom's weak password to obtain leaked hashes, then performing a Pass-the-Hash attack against user nancy. These credentials lead to FTP access for user david, revealing flag3.txt and enabling an ASPX webshell upload to retrieve flag4.txt.
2026-07-04AuthZExploiting Resource-Based Constrained Delegation (RBCD)Writeup on exploiting Resource-Based Constrained Delegation (RBCD) to achieve full Computer Account takeover. The article details how RBCD, introduced in Windows Server 2012, flips the trust direction from outgoing to incoming, allowing any account with write permissions on a computer object to modify its `msDS-AllowedToActOnBehalfOfOtherIdentity` attribute. This vulnerability can be exploited by creating a new computer account (Service A) with an SPN, obtaining a non-forwardable Kerberos ticket via S4U2Self, and then using RBCD to impersonate users to a target resource (Service B) via S4U2Proxy.
2026-07-04RCETryHackMe: Payload WalkthroughWriteup of an AI supply chain compromise on TryHackMe, detailing an investigation into a malicious model that remained undetected for 21 days. The analysis reveals the model's ability to execute shell commands via `system()` and exfiltrate data using POST requests. The writeup highlights the importance of inspecting candidate replacement models, specifically identifying a suspicious `manipulate_output` layer, and emphasizes securing AI model supply chains by verifying provenance and monitoring runtime behavior, referencing the organization `trustworthy-ai-lab` and the shell command `hostname`.
2026-07-04AIIndirect Prompt Injection Targets AI AgentsLibrary of techniques and real-world examples demonstrating indirect prompt injection (IPI) against AI agents. This resource details how malicious websites, such as a payment scam impersonating a Python library and a typosquatting campaign targeting a cryptocurrency platform, use SEO poisoning and CSS/HTML abuse to embed hidden instructions. These instructions aim to manipulate AI decision-making, leading to context contamination and RAG poisoning, as observed in tests against multiple LLMs. The findings highlight the vulnerability of AI agents to social engineering through web content, including the abuse of JSON-LD structured data and off-screen div elements.
2026-07-04SSRFMicrosoft Exchange SSRF Vulnerability Lets Low-Privileged Attackers Read Arbitrary FilesA Server-Side Request Forgery (SSRF) vulnerability in Microsoft Exchange allows low-privileged attackers to read arbitrary files on affected servers. This means an attacker with minimal access can exploit the flaw to access sensitive information they shouldn't be able to. The specific details and impact are outlined in the provided link.
2026-07-04Supply ChainRansomware Groups Turn to Citrix Bleed 2 BYOVD and Supply Chain CredentialsLibrary detailing how ransomware groups, like Anubis and TeamPCP, are leveraging vulnerabilities such as Citrix Bleed 2 (CVE-2025-5777) and supply chain attacks. The entry highlights the use of legitimate Remote Management and Monitoring (RMM) tools like ScreenConnect and Zoho Assist for persistence, alongside techniques like Bring Your Own Vulnerable Driver (BYOVD) for disabling endpoint security. It also notes the deployment of data exfiltration tools including S3 Browser, rclone, and Cloudflare Tunnels, and the intentional destruction of data by some ransomware variants.
2026-07-03FuzzingUnpatched Flaws Disclosed in Filesystem Bundled Into Millions of Embedded DevicesLibrary of seven vulnerabilities in FatFs, including CVE-2026-6682, enabling memory corruption and code execution on embedded devices like cameras and crypto wallets. These flaws, rated Medium to High by runZero, stem from mishandling malformed data in FAT and exFAT volumes. Exploits are publicly available, and while one GPT hang bug has an upstream fix, others require downstream vendor patching.
2026-07-03OSINTTop Ethical Hacking Tools used by Ethical hackers in 2026: An Expert Guide for Pentesters Ethical hackers and Security ProfessionalsLibrary of ethical hacking tools, detailing Nmap for network scanning, Shodan for internet exposure discovery, Maltego for relationship mapping, Amass for subdomain enumeration, theHarvester for OSINT, Wireshark for packet analysis, Netcat for port communication, Masscan for rapid host discovery, CrackMapExec for Active Directory testing, Burp Suite for web application penetration testing, OWASP ZAP for beginner-friendly web testing, SQLmap for SQL injection validation, Nuclei for fast vulnerability scanning, Ffuf for directory discovery, Nikto for web server vulnerability detection, Aircrack-ng for Wi-Fi auditing, Kismet for wireless discovery, Wifite for automated Wi-Fi testing, Bettercap for MITM testing, Hashcat for password auditing, John the Ripper for password strength testing, Hydra for login authentication testing, Mimikatz for Windows credential analysis, and Metasploit Framework for exploitation and post-exploitation testing.
2026-07-03SSRFThe Daily Tech Feed: A critical SSRF vulnerability CVE-2026-45504 in Microsoft Exchange allows authenticated users to read arbitrary files on servers. Enterprises must update their systems promptly to mitigate this risk. #MicrosoftExchange #SSRF #CVE202645504 #CyberSecurity #VulnerabilityA critical Server-Side Request Forgery (SSRF) vulnerability, CVE-2026-45504, has been identified in Microsoft Exchange. This flaw enables authenticated users to access and read any file on affected servers. Microsoft Exchange users are urged to update their systems immediately to prevent exploitation of this serious security risk.
2026-07-03API SecurityNebula AI-Powered Penetration Testing Platform Automates Vulnerability AssessmentsNebula is an AI-powered platform that automates penetration testing and vulnerability assessments. It aims to streamline the cybersecurity process by identifying and prioritizing security flaws. The platform leverages AI to enhance the efficiency and effectiveness of these crucial security checks. The provided link directs to more information about this automated solution.
2026-07-03Supply ChainOver 1000 firms hit by TeamPCPs supply-chain attacksOver 1,000 companies have been affected by supply-chain attacks orchestrated by the threat actor known as TeamPCP. The group exploited vulnerabilities to gain access and spread their malware. This widespread impact highlights the significant risks associated with compromised software supply chains, as malicious actors can leverage trusted software to infiltrate numerous organizations simultaneously.