All posts tagged cyber

■■■■□ Zero-Day: Researchers to release PoC exploit for critical Zoho RCE bug, patch now. https://www.bleepingcomputer.com/news/security/researchers-to-release-poc-exploit-for-critical-zoho-rce-bug-patch-now/ https://t.me/cKure/12066

■■□□□ Cyber-Crime by Iranian state. A report by the ‘Citizen Lab’. Uncovering Iran’s Mobile Legal Intercept System. https://citizenlab.ca/2023/01/uncovering-irans-mobile-legal-intercept-system/ https://t.me/cKure/12065

■■■■■ API Penetration Testing: Using ZAP Automation Framework. https://systemweakness.com/api-penetration-testing-using-zap-automation-framework-b8cc2a418e76?gi=ebe6aa3d586c https://t.me/cKure/12064

■■■■■ PoC exploits released for critical bugs in popular WordPress plugins. https://www.bleepingcomputer.com/news/security/poc-exploits-released-for-critical-bugs-in-popular-wordpress-plugins/ https://t.me/cKure/12063

■■■■□ CVE-2023-21752: PoC for arbitrary file delete vulnerability in Windows Backup service. https://github.com/Wh04m1001/CVE-2023-21752 https://t.me/cKure/12062

● Yet another website: isearchfrom.com [ Google search from different location ] Site might record use data. https://t.me/cKure/12061

● Yet another website: carbondate.cs.odu.edu [ Website creation date guesser ] https://t.me/cKure/12060

■■■■□ CVE-2022-44877: Vulnerability with 9.8 severity in Control Web Panel is under active exploit. https://arstechnica.com/information-technology/2023/01/vulnerability-with-9-8-severity-in-control-web-panel-is-under-active-exploit/ https://t.me/cKure/12059

■■■■■ Introduction to Heap exploitation, Overflows (Part 3). https://valsamaras.medium.com/the-toddlers-introduction-to-heap-exploitation-overflows-part-3-d3d1aa042d1e https://t.me/cKure/12057

Zero-Day: Vulnerability in JWT Secret Poisoning (CVE-2022-23529). https://unit42.paloaltonetworks.com/jsonwebtoken-vulnerability-cve-2022-23529/ https://nvd.nist.gov/vuln/detail/CVE-2022-23529 https://t.me/cKure/12055