PT-2026-46873

Summary The ip-restriction middleware hono/ip-restriction compares incoming IP addresses against configured deny and allow rules using string equality after partial normalization. Non-canonical IPv6 representations of an address already listed in a static rule — such as compressed forms,...

CVE-2026-47674

Summary of CVE-2026-47674 : In Hono, the ip-restriction middleware (hono/ip-restriction) evaluates deny/allow rules by string equality after partial normalization. Before version 4.12.21, non-canonical IPv6 representations (e.g., compressed forms, explicit-zero forms, or hex-notation IPv4-mapped ...

PT-2026-44414

Name of the Vulnerable Software and Affected Versions Hono versions prior to 4.12.21 Description The ip-restriction middleware hono/ip-restriction compares incoming IP addresses against configured deny and allow rules using string equality after partial normalization. Non-canonical IPv6...

Rack 安全漏洞

Rack is a modular Ruby web server interface developed by Rack authors. Vulnerabilities exist in versions of Rack prior to 2.2.23, 3.1.21, and 3.2.6. These vulnerabilities stem from Rack::Staticapplicablerules’ evaluation of header rules for PATHINFO when the original URL is encoded. The underlyin...

Google’s Chrome changes make life harder for ad blockers

Despite protests, Google is rolling out changes in the Chrome browser that make it harder for ad blockers to do their job. Starting last Monday, June 3, 2024, Chrome Beta, Dev, and Canary channels will see the effects of the implementation of the new extension platform Manifest V3. The gradual...

The vulnerability of the settings/delStaticDhcpRules file in TOTOLINK A7100RU router microprogramming software allows a perpetrator to execute arbitrary commands.

The vulnerability of the settings/delStaticDhcpRules file in TOTOLINK A7100RU router microprogramming software is related to the lack of measures for cleaning incoming data. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

CVE-2023-24238

TOTOlink A7100RUV7.4cu.2313B20191024 was discovered to contain a command injection vulnerability via the city parameter at setting/delStaticDhcpRules...

XNC: How to Block any Device which does not use SecureMail Agent

Question : XNC: How to Block any Device which does not use SecureMail Agent Answer : Rule = Static+XDM: Block mode Made the static XNC rule for "WorxMail" agent. The Above step can also be achieved by allowing Secure Mail agent as "Secure Mail/Secure Mail" in the XNC RegEx build. Perform "Implici...

How to Change Order of NICs in XenServer

Theinterface-rename is a utility included in Citrix Hypervisor 8.2 Cumulative Update 1 and XenServer 8. This utility allows for granular management of network interface cards to facilitate renaming and reordering of them from the default installed configuration. The interface-rename utility refer...