CVE-2020-35774: twitter-server XSS Vulnerability Discovered

According to its official documentation, “twitter-server” is a Twitter OSS project used to provide a template from which servers at Twitter are built. It provides common application components such as an administrative HTTP server, tracing, stats, and more, and is used, amongst other things, by both the Finagle and Finatra frameworks. After researching twitter-server, theRead More ›

Drupal Core: Behind the Vulnerability - Security Boulevard

Serious Cross Site Scripting Vulnerability in TweetDeck - Twitter

Technical Blog Archives - /zh

Drupal Core: Behind the Vulnerability - Security Boulevard

WebSphere Remote Code Execution Vulnerability (CVE-2020-4534) Threat Alert - NSFOCUS, Inc., a global network and cyber security leader, protects enterprises and carriers from advanced cyber attacks.

CVE-2021-26084: Atlassian Confluence OGNL Injection Vulnerability Exploited in the Wild - Blog

CVE-2020-1350: Wormable Remote Code Execution Vulnerability in Windows DNS Server Disclosed (SIGRed) - Blog

CVE-2021–24563 Unauthenticated Stored XSS [Frontend Uploader <= 1.3.2], by Veshraj Ghimire, PenTester Nepal

Drupal Core: Behind the Vulnerability - Security Boulevard

Checkmarx Research: Apache Dubbo 2.7.3 – Unauthenticated RCE via Deserialization of Untrusted Data (CVE-2019-17564) - Security Boulevard

Detecting CVE-2020-1472 (CISA ED 20-04) Using Splunk Attack Range

Twitter users fall victim to new XSS worm

Addressing Critical ZeroLogon Vulnerability CVE-2020-1472

Checkmarx Research: Apache Dubbo 2.7.3 – Unauthenticated RCE via Deserialization of Untrusted Data (CVE-2019-17564) - Security Boulevard