CVE-2025-25364

creationtimestamp| type| source ---|---|--- 2025-03-24 14:43:11+00:00| seen| https://infosec.exchange/users/threatcodex/statuses/114217935883108579 2025-04-18 18:28:17+00:00| seen| https://bsky.app/profile/r-netsec-bot.bsky.social/post/3ln4arcbktd2z 2025-04-18 20:24:32+00:00| seen|...

CVE-2025-0997

creationtimestamp| type| source ---|---|--- 2025-02-12 19:07:27+00:00| seen| https://infosec.exchange/users/screaminggoat/statuses/113992482587961618 2025-02-13 08:20:09+00:00| seen| https://infosec.exchange/users/vuldb/statuses/113995599655907229 2025-02-15 01:30:42+00:00| seen|...

CVE-2024-12172

creationtimestamp| type| source ---|---|--- 2024-12-12 06:12:22+00:00| seen| https://infosec.exchange/users/cve/statuses/113638371610329553 2024-12-12 07:58:30+00:00| seen| https://t.me/cvedetector/12731 2025-01-06 20:19:17+00:00| seen|...

Full Disclosure List Rises From the Ashes For Fresh Start

When the Full Disclosure mailing list closed down last week, many in the security community wondered what, if anything, would fill the void. As it turns out, Full Disclosure will fill that void. John Cartwright, one of the creators of the list, announced on March 19 that he was shutting it down...

CPCommerce 1.2.6 - URL Rewrite Input Variable Overwrite Authentication Bypass

CPCommerce 1.2.6 - URL Rewrite Input Variable Overwrite Authentication Bypass Author: girex Homepage: girex.altervista.org CMS: cpCommerce 1.2.6 Site: http://cpcommerce.cpradio.org/ Bug: URL Rewrite - Input variables overwrite PoC: Auth bypass - Shell upload Note: Works regardless php.ini setting...

antivir.txt

NOTE: Already posted to vuln-dev. Because I'm not receiving comments, I believe that this one is real. Dear list, please inspect the following, your input is welcome. Vendors Microsoft and unspecified AV company are contacted two months ago, I'm not satisfied with their response and here is the...