Forem

Security

Hopefully not just an afterthought!

Posts

đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.
CVE-2026-22817: Identity Theft on the Edge: Exploiting JWT Algorithm Confusion in Hono
cverports profile

CVE-2026-22817: Identity Theft on the Edge: Exploiting JWT Algorithm Confusion in Hono

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-22785: Orval Overload: From OpenAPI Spec to Remote Code Execution
cverports profile

CVE-2026-22785: Orval Overload: From OpenAPI Spec to Remote Code Execution

#security #cve #cybersecurity
Comments
2 min read
đź”’ The Hidden Cost of Dependency Confusion
Cover image for đź”’ The Hidden Cost of Dependency Confusion
harsh_hak profile

đź”’ The Hidden Cost of Dependency Confusion

#cybersecurity #security #programming #devops
1
Comments
4 min read
GHSA-F2MF-Q878-GH58: Parsl Tongue: SQL Injection in High-Performance Computing Visualization
cverports profile

GHSA-F2MF-Q878-GH58: Parsl Tongue: SQL Injection in High-Performance Computing Visualization

#security #cve #cybersecurity #ghsa
Comments
2 min read
GHSA-VX9W-5CX4-9796: Crawl4AI: When Web Scrapers Become File Servers
cverports profile

GHSA-VX9W-5CX4-9796: Crawl4AI: When Web Scrapers Become File Servers

#security #cve #cybersecurity #ghsa
Comments
2 min read
CVE-2026-23996: The Tell-Tale Delay: Timing Side-Channels in fastapi-api-key
cverports profile

CVE-2026-23996: The Tell-Tale Delay: Timing Side-Channels in fastapi-api-key

#security #cve #cybersecurity
Comments
2 min read
GHSA-RHFX-M35P-FF5J: Borrow Checker's Revenge: Stacked Borrows Violation in Rust's `lru` Crate
cverports profile

GHSA-RHFX-M35P-FF5J: Borrow Checker's Revenge: Stacked Borrows Violation in Rust's `lru` Crate

#security #cve #cybersecurity #ghsa
Comments
2 min read
CVE-2026-21441: The Invisible Avalanche: urllib3 Decompression Bomb
cverports profile

CVE-2026-21441: The Invisible Avalanche: urllib3 Decompression Bomb

#security #cve #cybersecurity
Comments
2 min read
CVE-2025-32444: Pickle Rick-Roll: Critical RCE in vLLM's Mooncake Integration
cverports profile

CVE-2025-32444: Pickle Rick-Roll: Critical RCE in vLLM's Mooncake Integration

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-22708: Trust Issues: Bypassing Cursor AI's 'Safe Mode' via Shell Built-ins
cverports profile

CVE-2026-22708: Trust Issues: Bypassing Cursor AI's 'Safe Mode' via Shell Built-ins

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-22200: Paper Cuts to Pwnage: Turning osTicket PDF Exports into RCE
cverports profile

CVE-2026-22200: Paper Cuts to Pwnage: Turning osTicket PDF Exports into RCE

#security #cve #cybersecurity
Comments
2 min read
CVE-2025-61984: Bash a Newline: The SSH ProxyCommand RCE You Didn't Know You Had
cverports profile

CVE-2025-61984: Bash a Newline: The SSH ProxyCommand RCE You Didn't Know You Had

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-23498: Shopware 6: Mapping Your Way to RCE via Twig Type Juggling
cverports profile

CVE-2026-23498: Shopware 6: Mapping Your Way to RCE via Twig Type Juggling

#security #cve #cybersecurity
Comments
2 min read
Why Risk-Based Code Paths Beat Full Visualization
Cover image for Why Risk-Based Code Paths Beat Full Visualization
amartyajha profile

Why Risk-Based Code Paths Beat Full Visualization

#codereview #programming #security #ai
1
Comments
9 min read
Modeling identity and access hierarchy in Postgres with ltree
buchanae profile

Modeling identity and access hierarchy in Postgres with ltree

#architecture #database #postgres #security
Comments
7 min read
đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.