All posts tagged telegram

■■■■■ Samsung Knox Unauthenticated File Read filed under SVE-2020-18025: Unauthorised access to Samsung secure folder files. ● Samsung does not issue CVE IDs. Instead they have their own system like it and refer with SVE ID. https://servicenger.com/blog/mobile/sve-2020-18025-unauthorised-access-to-samsung-secure-folder-files/ https://t.me/cKure/5738

■■■□□ Comcast TV Remote Hack Opens Homes to Snooping. https://threatpost.com/comcast-tv-remote-homes-snooping/159899/ https://t.me/cKure/5736

■■■■□ Google’s Chrome 86: Critical Payments Bug, Password Checker Among Security Notables. https://threatpost.com/google-chrome-86-critical-payments-bug-password-check/159938/ https://t.me/cKure/5735

■■■■□ Apple's T2 Security Chip Has an Unfixable Flaw https://www.wired.com/story/apple-t2-chip-unfixable-flaw-jailbreak-mac | #0day https://t.me/cKure/5734

■■■□□ Vulmap: Aiding privilege escalation with CVE-mapping vulnerability scanner. https://portswigger.net/daily-swig/amp/vulmap-aiding-privilege-escalation-with-cve-mapping-vulnerability-scanner https://t.me/cKure/5733

■■□□□ Golden Nuggets: Burp Suite Extension to easily create Wordlists based on URI, URI Parameters and Single Words (Minus the Domain). https://github.com/GainSec/GoldenNuggets-1 https://t.me/cKure/5732

■■■■□ Mutation XSS via namespace confusion – DOMPurify < 2.0.17 bypass. https://research.securitum.com/mutation-xss-via-mathml-mutation-dompurify-2-0-17-bypass/ https://t.me/cKure/5731

■■□□□ Monitorizer. The subdomain monitorization framework. https://github.com/BitTheByte/Monitorizer https://t.me/cKure/5730

■■■□□ Facebook's path Traversal RCE features on port swigger. https://portswigger.net/daily-swig/amp/vulnerability-in-facebook-android-app-nets-10k-bug-bounty https://t.me/cKure/5729

■□□□□ HTTP Request Smuggling in 2020. https://i.blackhat.com/USA-20/Wednesday/us-20-Klein-HTTP-Request-Smuggling-In-2020-New-Variants-New-Defenses-And-New-Challenges.pdf https://t.me/cKure/5728