Posted by KoreLogic Disclosures via Fulldisclosure on Feb 04
KL-001-2025-002: Checkmk NagVis Remote Code ExecutionPosted by KoreLogic Disclosures via Fulldisclosure on Feb 04
KL-001-2025-001: Checkmk NagVis Reflected Cross-site ScriptingPosted by Apple Product Security via Fulldisclosure on Feb 01
APPLE-SA-01-30-2025-1 GarageBand 10.4.12Posted by David Fifield on Feb 01
I tested a few more times, and it appears the text injection hasPosted by hyp3rlinx on Feb 01
Updated SQL Injection CVE-2019-19245 exploit for Python3.Posted by Shaikh Shahnawaz on Jan 29
[+] Credits: Shahnawaz Shaikh, Security Researcher at Cybergate Defense LLCPosted by Georgi Guninski on Jan 29
Asking Deepseek on Jan 28 09:33:11 AM UTC 2025:Posted by David Fifield on Jan 29
The page https://www.google.com/sorry/index is familiar to Tor and VPNPosted by Apple Product Security via Fulldisclosure on Jan 27
APPLE-SA-01-27-2025-9 Safari 18.3Posted by Apple Product Security via Fulldisclosure on Jan 27
APPLE-SA-01-27-2025-8 tvOS 18.3Posted by Apple Product Security via Fulldisclosure on Jan 27
APPLE-SA-01-27-2025-7 watchOS 11.3Posted by Apple Product Security via Fulldisclosure on Jan 27
APPLE-SA-01-27-2025-6 macOS Ventura 13.7.3Posted by Apple Product Security via Fulldisclosure on Jan 27
APPLE-SA-01-27-2025-5 macOS Sonoma 14.7.3Posted by Apple Product Security via Fulldisclosure on Jan 27
APPLE-SA-01-27-2025-4 macOS Sequoia 15.3Posted by Apple Product Security via Fulldisclosure on Jan 27
APPLE-SA-01-27-2025-3 iPadOS 17.7.4Posted by Apple Product Security via Fulldisclosure on Jan 27
APPLE-SA-01-27-2025-2 iOS 18.3 and iPadOS 18.3Posted by Apple Product Security via Fulldisclosure on Jan 27
APPLE-SA-01-27-2025-1 visionOS 2.3Posted by Shaikh Shahnawaz on Jan 27
[+] Credits: Shahnawaz Shaikh, Security Researcher at Cybergate Defense LLCPosted by SEC Consult Vulnerability Lab via Fulldisclosure on Jan 27
SEC Consult Vulnerability Lab Security Advisory < 20250127-0 >Posted by Andrey Stoykov on Jan 27
# Exploit Title: Host Header Injection - atutorv2.2.4