endorlabs.com
Resources curated from this publisher and indexed across appsec.fyi topic pages. Last item added: 2026-07-15.
| Date Added | Resource | Excerpt |
|---|---|---|
| 2026-07-15 2026 | Veiled in Trust: Software Supply Chain Attacks ExplainedSupply Chain | This article explains software supply chain attacks, where attackers compromise legitimate software or its development tools to infiltrate target systems. These attacks exploit trust in the software supply chain, affecting users who update or download compromised software. The content likely details common attack vectors and strategies to mitigate these threats. |
| 2026-04-22 2026 | CVE-2026-34950 fast-jwt: Incomplete Fix for CVE-2023-48223JWT | Writeup of CVE-2026-34950 in fast-jwt, detailing an incomplete fix for CVE-2023-48223. This vulnerability arises from a regex anchor issue in `publicKeyPemMatcher`, allowing leading whitespace in PEM keys to cause the library to misclassify RSA public keys as HMAC secrets. An attacker can then forge HS256 tokens using the public key as the secret, bypassing authentication for applications using RS256 without algorithm specification. |
| 2026-04-22 2026 | Critical SQL Injection Vulnerability in Django (CVE-2025-64459)Python | Library detailing CVE-2025-64459, a critical SQL injection vulnerability in Django that allows attackers to manipulate query logic via internal parameters like `_connector` and `_negated`. The analysis covers exploitation scenarios such as authentication bypass and data exfiltration, outlines the fix implemented in patched Django versions (5.2.8, 5.1.14, 4.2.26), and provides mitigation strategies including code review, parameter whitelisting, and testing for vulnerable patterns. |
| 2026-04-11 2026 | CVE-2025-47949: samlify SAML SSO bypassAuthN | Library that implements SAML 2.0 Single Sign-On, samlify, versions prior to 2.10.0 are vulnerable to CVE-2025-47949, a critical Signature Wrapping attack. This allows attackers to forge SAML Responses by introducing a malicious assertion into a legitimately signed XML document, leading to authentication bypass and user impersonation. Exploitation is easy, requiring only a valid signed XML from the Identity Provider. Upgrading to samlify version 2.10.0 or later is the recommended fix. |
| 2026-04-10 2026 | Root in One Request: Marimo's Critical Pre-Auth RCE (CVE-2026-39987)RCE | Writeup of CVE-2026-39987, a critical pre-authentication remote code execution vulnerability in the Marimo Python reactive notebook framework. This issue, with a CVSS v4.0 score of 9.3, stems from an unauthenticated WebSocket endpoint for the integrated terminal, allowing attackers to gain an interactive shell as the Marimo process user. The vulnerability has been exploited in the wild, and vulnerable instances are believed to be widespread. Marimo versions prior to 0.23.0 are affected. |