Aggregator
BlueHammer: Windows zero-day exploit leaked
1 week 1 day ago
A buggy but functional proof-of-concept (PoC) exploit for an unpatched Windows local privilege escalation vulnerability dubbed BlueHammer has been published on GitHub by someone who goes by the handle Chaotic Eclipse and Nightmare Eclipse. Several security researchers have fixed the bugs in the exploit and made it work on patched Windows 10, 11, and Windows Server systems, and the question now is whether Microsoft is planning or working on a fix. The BlueHammer PoC exploit … More →
The post BlueHammer: Windows zero-day exploit leaked appeared first on Help Net Security.
Zeljka Zorz
AI-Led Remediation Crisis Prompts HackerOne to Pause Bug Bounties
1 week 1 day ago
Discovery used to be the bottleneck for open source bugs, but with automated discovery, remediation's the bottleneck, which bounties don't fund.
Jai Vijayan
XP95
1 week 1 day ago
You must login to view this content
cohenido
Submit #791276: Totolink A7100RU 7.4cu.2313_b20191024 Command Injection [Accepted]
1 week 1 day ago
Submit #791276 / VDB-356380
LtzHuster2
Submit #791274: Totolink A7100RU 7.4cu.2313_b20191024 Command Injection [Accepted]
1 week 1 day ago
Submit #791274 / VDB-356379
LtzHuster2
Submit #791272: Totolink A7100RU 7.4cu.2313_b20191024 Command Injection [Accepted]
1 week 1 day ago
Submit #791272 / VDB-356378
LtzHust2
Submit #791271: Totolink A7100RU 7.4cu.2313_b20191024 Command Injection [Accepted]
1 week 1 day ago
Submit #791271 / VDB-356377
LtzHust2
Submit #791266: Totolink A7100RU 7.4cu.2313_b20191024 Command Injection [Accepted]
1 week 1 day ago
Submit #791266 / VDB-356376
LtzHust2
Submit #791217: Tenda i12 V1.0.0.11(3862) Path Traversal [Accepted]
1 week 1 day ago
Submit #791217 / VDB-356375
LtzHust2
Submit #791199: SourceCodester Resort Reservation System (PHP + SQLite3) 1.0 SQL Injection [Duplicate]
1 week 1 day ago
Submit #791199 / VDB-236235
Antony Esthak Twinson
Submit #791164: SourceCodester Resort Reservation System (PHP + SQLite3) 1.0 Local File Inclusion [Duplicate]
1 week 1 day ago
Submit #791164 / VDB-236234
Antony Esthak Twinson
Submit #791154: SourceCodester Resort Reservation System (PHP + SQLite3) 1.0 Local File Inclusion [Duplicate]
1 week 1 day ago
Submit #791154 / VDB-236234
Antony Esthak Twinson
Submit #791025: SourceCodester Patients Waiting Area Queue Management System 1.0 SQL Injection [Duplicate]
1 week 1 day ago
Submit #791025 / VDB-332350
himanshuh4cker
Submit #790769: jeecgboot jimureport <= 2.3.0 Code Injection [Accepted]
1 week 1 day ago
Submit #790769 / VDB-356374
anch0r
The Gentleman
1 week 1 day ago
You must login to view this content
cohenido
Submit #790337: code-projects Movie Ticketing System in PHP 1.0 Information Disclosure [Accepted]
1 week 1 day ago
Submit #790337 / VDB-356373
AhmadMarzook
Beast
1 week 1 day ago
You must login to view this content
cohenido
[un]prompted 2026 – Al Notetakers: The Most Important Person In The Room
1 week 1 day ago
Author, Creator & Presenter: Joe Sullivan, CEO, Ukraine Friends And Joe Sullivan Security
Our thanks to [un]prompted for publishing their Creators, Authors and Presenter’s outstanding [un]prompted 2026 AI Security Practitioner content on the Organizations' YouTube Channel.
The post [un]prompted 2026 – Al Notetakers: The Most Important Person In The Room appeared first on Security Boulevard.
Marc Handelman
New macOS stealer campaign uses Script Editor in ClickFix attack
1 week 1 day ago
A new campaign delivering the Atomic Stealer malware to macOS users abuses the Script Editor in a variation of the ClickFix attack that tricked users into executing commands in Terminal. [...]
Bill Toulas