Explore >> Select a destination

You are here

 machevalia.blog
Ivanti EPM Remote Code Execution - Machevalia
| | mazinahmed.net
OhMyZsh dotenv Remote Code Execution | Mazin Ahmed
2.0 parsecs away

Travel
| | Application and Infrastructure Security Engineering
| | www.zerodayinitiative.com
ZDI-24-347 | Zero Day Initiative
0.9 parsecs away

Travel
| | [AI summary] A critical remote code execution vulnerability in SolarWinds Access Rights Manager allows attackers to execute arbitrary code with service account privileges if proper data validation is not enforced.
| | www.thezdi.com
Zero Day Initiative - Getting Unauthenticated Remote Code Execution on the Logsign Unified SecOps Platform
1.5 parsecs away

Travel
| | [AI summary] This blog post discusses two critical vulnerabilities in the Logsign Unified SecOps Platform, CVE-2024-5716 (authentication bypass) and CVE-2024-5717 (command injection), which can be combined for remote, unauthenticated code execution.
| | www.nodejs-security.com
SQL Injection and Bypassing "Read-Only" Mode in Xata's MCP Server
8.4 parsecs away

Travel
| The Model Context Protocol (MCP) Server by Xata had a critical vulnerability that allows SQL injection attacks, bypassing its "read-only" mode. This article explores the flaw, its exploitation, and mitigation strategies.