All posts in Uncategorized

■■□□□ Recon tool that allows searching on URLs that are exposed via shortener services. https://github.com/utkusen/urlhunter https://t.me/cKure/6098

■■■□□ Path Traversal on Citrix XenMobile Server. https://swarm.ptsecurity.com/path-traversal-on-citrix-xenmobile-server/ https://t.me/cKure/6097

■■□□□ CVE-2020-4788: Speculation on incompletely validated data on IBM Power9. https://www.openwall.com/lists/oss-security/2020/11/20/3 https://t.me/cKure/6096

■■□□□ CVE-2020-24365 https://reportcybercrime.com/cve-2020-24365-gemtek-wrtm-127acn-和-gemtek-wrtm-127×9-安全漏洞-漏洞情报、漏洞详情、安/ https://t.me/cKure/6095

■□□□□ Botnets Are Mass Scanning The Internet For Unsecured ENV Files. https://packetstormsecurity.com/news/view/31783/Botnets-Are-Mass-Scanning-The-Internet-For-Unsecured-ENV-Files.html https://www.zdnet.com/article/botnets-have-been-silently-mass-scanning-the-internet-for-unsecured-env-files/ https://t.me/cKure/6094

■□□□□ GoDaddy Employees Used in Attacks on Multiple Cryptocurrency Services. https://krebsonsecurity.com/2020/11/godaddy-employees-used-in-attacks-on-multiple-cryptocurrency-services/ https://t.me/cKure/6093

■■□□□ #DataLeak: Manchester United football club discloses security breach. The club is investigating the extent of breach. https://www.zdnet.com/article/manchester-united-football-club-discloses-security-breach https://t.me/cKure/6092

■□□□□ https://github.com/dsopas/assessment-mindset https://t.me/cKure/6091

■■■■□ Dutch journalist Daniel Verlaan of RTL Nieuws gatecrashes and joined the meeting after the Dutch defence minister accidentally posted some of the login details on Twitter. https://www.bbc.com/news/amp/world-europe-55027641 https://t.me/cKure/6088

■■■■□ ImageMagick – Shell injection via PDF password. https://insert-script.blogspot.com/2020/11/imagemagick-shell-injection-via-pdf.html https://t.me/cKure/6087