BIT-MEDIAWIKI-2024-34506

An issue was discovered in includes/specials/SpecialMovePage.php in MediaWiki before 1.39.7, 1.40.x before 1.40.3, and 1.41.x before 1.41.1. If a user with the necessary rights to move the page opens Special:MovePage for a page with tens of thousands of subpages, then the page will exceed the...

CVE-2025-28221

Tenda W6S v1.0.0.4510 has a Buffer Overflow vulnerability in the setlocaltime function, which allows remote attackers to cause web server crash via parameter time passed to the binary through a POST request...

MediaWiki 安全漏洞

MediaWiki is a suite of free and freely available web-based Wiki engines from the MediaWiki Foundation. The product can be used to deploy internal knowledge management and content management systems. MediaWiki suffers from a security vulnerability that stems from the fact that it can cause a deni...

REST API Error: S3 Error: The difference between the request time and the current time is too large / Invalid Credentials for Amazon S3

Challenge This article covers two different errors that occur when performing different tasks, but have the same root cause: When adding S3 Object Storage to Veeam Console, Veeam displays the follow error: Failed to list S3 buckets: check if the specified account has required permissions REST API...

Uber: Email Address Enumeration

Hi. I'm going to talk about brute-force for finding emails in the sign-up page. Reproduction Steps 1-Send a request like this POST https://get.uber.com/signupsubmit/ HTTP/1.1...