CVE-2025-65899

Kalmia CMS version 0.2.0 contains a user enumeration vulnerability in its authentication mechanism. The application returns different error messages for invalid users usernotfound versus valid users with incorrect passwords invalidpassword. This observable response discrepancy allows...

CVE-2025-65899

Kalmia CMS v0.2.0 is affected by an authentication flaw described as an Observable Response Discrepancy. The login endpoint /kal-api/auth/jwt/create reveals existence of accounts by returning distinct messages: user_not_found for invalid usernames and invalid_password for valid usernames with a w...

FBI may have found a New Way to Unlock Shooter's iPhone without Apple

There's more coming to the high-profile Apple vs. FBI case. The Federal Bureau of Investigation FBI might not need Apple's assistance to unlock iPhone 5C that belonged to San Bernardino shooter, Syed Rizwan Farook. If you have followed the San Bernardino case closely, you probably know everything...

MSN Passport accounts remote DoS code

No description provided by source. !/usr/bin/perl by: Simo aka 6mOHaCk 1 december 2005 MorX security research team www.morx.org Details: it seems that msn passport users using services such hotmail email and msn messenger and more ...