Stored XSS via SVG Upload in chat.line.biz on 05/01/2026
LY Corporation disclosed a bug submitted by imnotr3al: https://hackerone.com/reports/3008878 - Bounty: $100 [...]
InfoSec Planet
A collection of diverse security content from a curated list of sources. This website also serves as a demo for "worker-planet", the software that powers it.
Path Traversal in curl file:// Protocol Handler Allows Unauthorized File Access on 04/01/2026
curl disclosed a bug submitted by 7hackerstar: https://hackerone.com/reports/3485930 [...]
Alt-Svc bypasses credential leak protection (CVE-2018-1000007) on 04/01/2026
curl disclosed a bug submitted by amik_f: https://hackerone.com/reports/3485826 [...]
Predictable proposal participant tokens enable unauthorized access and vote submission on 04/01/2026
Nextcloud disclosed a bug submitted by loremipsumi: https://hackerone.com/reports/3385434 - Bounty: $100 [...]
Users can modify tags on files that do not belong to them on 04/01/2026
Nextcloud disclosed a bug submitted by rolandsch: https://hackerone.com/reports/3040887 - Bounty: $150 [...]
Deck app allows to spoof file extensions by using RTLO characters on 04/01/2026
Nextcloud disclosed a bug submitted by jayateerthag: https://hackerone.com/reports/2326618 - Bounty: $100 [...]
Information disclosure via Desktop client when attempting to lock a file inside a end-to-end encrypted directory on 04/01/2026
Nextcloud disclosed a bug submitted by nilsding: https://hackerone.com/reports/3159877 [...]
Stored XSS in contacts app via organisation and title field on 04/01/2026
Nextcloud disclosed a bug submitted by updatelap: https://hackerone.com/reports/3293290 - Bounty: $100 [...]
A message to my loving haters on 03/01/2026
What to Expect From the 2026 Cybersecurity Job Market on 03/01/2026
Friday Squid Blogging: Squid Found in Light Fixture on 02/01/2026
Probably a college prank. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Blog moderation policy. [...]
PROTOCOL-LEVEL: Persistent UDP Amplification and Cache Poisoning via Alt-Svc Logic Flaw on 02/01/2026
curl disclosed a bug submitted by huntsd: https://hackerone.com/reports/3483902 [...]
The Kimwolf Botnet is Stalking Your Local Network by BrianKrebs on 02/01/2026
The story you are reading is a series of scoops nestled inside a far more urgent Internet-wide security advisory. The vulnerability at issue has been exploited for months already, and it’s time for a broader awareness of the threat. The short version is that everything you thought you knew about the security of the internal network behind your Internet router probably is now dangerously out [...]
Flock Exposes Its AI-Enabled Surveillance Cameras on 02/01/2026
404 Media has the story: Unlike many of Flock’s cameras, which are designed to capture license plates as people drive by, Flock’s Condor cameras are pan-tilt-zoom (PTZ) cameras designed to record and track people, not vehicles. Condor cameras can be set to automatically zoom in on people’s faces as they walk through a parking lot, down a public street, or play on a playground, or [...]
HTTP Request Smuggling and SSRF via CRLF Injection in Curl_add_custom_headers on 02/01/2026
curl disclosed a bug submitted by n12d11n: https://hackerone.com/reports/3484431 [...]
CRLF Injection in Gopher Protocol (`lib/gopher.c`) on 02/01/2026
curl disclosed a bug submitted by gaurav0212: https://hackerone.com/reports/3484506 [...]
The role "CI-driven scan initiator" provides excessive read access on 02/01/2026
PortSwigger Web Security disclosed a bug submitted by osama-hamad: https://hackerone.com/reports/2276148 [...]
MQTT Protocol Violation & Integer Overflow in libcurl on 01/01/2026
curl disclosed a bug submitted by ssyyaa: https://hackerone.com/reports/3484319 [...]
A quiet New Year wish for security researchers on 01/01/2026
curl disclosed a bug submitted by ltl_professor: https://hackerone.com/reports/3483225 [...]
Lol they don’t even have the guts to tag me on 31/12/2025
Heath's Last Stream on 31/12/2025
Remote Code Execution identified on IBM endpoint. on 31/12/2025
IBM disclosed a bug submitted by dara_7979: https://hackerone.com/reports/3463045 [...]
LinkedIn Job Scams on 31/12/2025
Interesting article on the variety of LinkedIn job scams around the world: In India, tech jobs are used as bait because the industry employs millions of people and offers high-paying roles. In Kenya, the recruitment industry is largely unorganized, so scamsters leverage fake personal referrals. In Mexico, bad actors capitalize on the informal nature of the job economy by advertising fake formal ro [...]
Detect Go’s silent arithmetic bugs with go-panikint on 31/12/2025
Go’s arithmetic operations on standard integer types are silent by default, meaning overflows “wrap around” without panicking. This behavior has hidden an entire class of security vulnerabilities from fuzzing campaigns. Today we’re changing that by releasing go-panikint, a modified Go compiler that turns silent integer overflows into explicit panics. We used it to find a live integer overflow in t [...]
Bugbounty is difficult 😞 on 31/12/2025
Going From Blue Team to Red Team on 30/12/2025
My Favorite Bug Bounty Findings In 2025 on 30/12/2025
Using AI-Generated Images to Get Refunds on 30/12/2025
Scammers are generating images of broken merchandise in order to apply for refunds. [...]
The story of how i found XSS on GOOGLE - and did not get paid for it! on 30/12/2025
HTTP/2 and HTTP/3 Header Injection in curl on 30/12/2025
curl disclosed a bug submitted by cyberguardianrd: https://hackerone.com/reports/3481849 [...]
Proxy-Authorization header is leaked to origin server after redirect from proxied to direct connection on 30/12/2025
curl disclosed a bug submitted by yupiy: https://hackerone.com/reports/3480713 [...]
SMTP CRLF Injection & Protocol Desynchronization in libcurl on 29/12/2025
curl disclosed a bug submitted by ltl_professor: https://hackerone.com/reports/3481595 [...]
Happy 16th Birthday, KrebsOnSecurity.com! by BrianKrebs on 29/12/2025
KrebsOnSecurity.com celebrates its 16th anniversary today! A huge “thank you” to all of our readers — newcomers, long-timers and drive-by critics alike. Your engagement this past year here has been tremendous and truly a salve on a handful of dark days. Happily, comeuppance was a strong theme running through our coverage in 2025, with a primary focus on entities that enabled comp [...]
Telnet Suboption Buffer Pointer Underflow in lib/telnet.c leads to Out-of-Bounds Read on 29/12/2025
curl disclosed a bug submitted by stif: https://hackerone.com/reports/3480712 [...]
Are We Ready to Be Governed by Artificial Intelligence? on 29/12/2025
Artificial Intelligence (AI) overlords are a common trope in science-fiction dystopias, but the reality looks much more prosaic. The technologies of artificial intelligence are already pervading many aspects of democratic government, affecting our lives in ways both large and small. This has occurred largely without our notice or consent. The result is a government incrementally transformed by AI [...]
Developer geographic on 29/12/2025
CrossLayer State Confusion in libcurl: Credential & KeyMaterial Persistence Across Redirect / Connection Reuse Boundaries on 28/12/2025
curl disclosed a bug submitted by onevone: https://hackerone.com/reports/3480641 [...]
WebSocket Logic Error: Control Frame (PING/PONG) Starvation causes Connection Drop (DoS) during large transfers on 28/12/2025
curl disclosed a bug submitted by efrsxcv: https://hackerone.com/reports/3480039 [...]
Heap Buffer Over-read in lib/http2.c (on_header) handling PUSH_PROMISE frames on 28/12/2025
curl disclosed a bug submitted by efrsxcv: https://hackerone.com/reports/3480078 [...]
CRLF Injection / Protocol Smuggling in libcurl via CURLOPT_USERNAME (IMAP) on 28/12/2025
curl disclosed a bug submitted by efrsxcv: https://hackerone.com/reports/3479984 [...]
HTTP/3 Protocol Smuggling and Header Injection via CRLF in QPACK value conversion on 27/12/2025
curl disclosed a bug submitted by 0x0000nosfu: https://hackerone.com/reports/3479203 [...]
Security hardening: missing integer overflow check in curl_load_library() on 27/12/2025
curl disclosed a bug submitted by y_security: https://hackerone.com/reports/3479019 [...]
Friday Squid Blogging: Squid Camouflage on 26/12/2025
New research: Abstract: Coleoid cephalopods have the most elaborate camouflage system in the animal kingdom. This enables them to hide from or deceive both predators and prey. Most studies have focused on benthic species of octopus and cuttlefish, while studies on squid focused mainly on the chromatophore system for communication. Camouflage adaptations to the substrate while moving has been recen [...]
Where to Find Cybersecurity News on 26/12/2025
IoT Hack on 26/12/2025
Someone hacked an Italian ferry. It looks like the malware was installed by someone on the ferry, and not remotely. [...]
Protocol Smuggling / CRLF Injection via Gopher Protocol allows Arbitrary Command Injection on 25/12/2025
curl disclosed a bug submitted by 0x0000nosfu: https://hackerone.com/reports/3477023 [...]
Integer Overflow in `curl_easy_escape()` may lead to heap buffer overflow and stack memory disclosure on 32-bit platforms on 25/12/2025
curl disclosed a bug submitted by vovohelo: https://hackerone.com/reports/3476928 [...]
Public-suffix cookie injection when libpsl is disabled on 25/12/2025
curl disclosed a bug submitted by pwnie: https://hackerone.com/reports/3475472 [...]
Heap Buffer Over-Read via Malicious SMB Server READ_ANDX Response on 25/12/2025
curl disclosed a bug submitted by strokep: https://hackerone.com/reports/3470073 [...]
How To: Use the best hacking tool around on 25/12/2025
Urban VPN Proxy Surreptitiously Intercepts AI Chats on 24/12/2025
This is pretty scary: Urban VPN Proxy targets conversations across ten AI platforms: ChatGPT, Claude, Gemini, Microsoft Copilot, Perplexity, DeepSeek, Grok (xAI), Meta AI. For each platform, the extension includes a dedicated “executor” script designed to intercept and capture conversations. The harvesting is enabled by default through hardcoded flags in the extension’s configura [...]
Hero highlight -Zack0x01 on 24/12/2025
I have INCREDIBLE news on 24/12/2025
Check out brutelogic ❤️❤️ on 24/12/2025
tabnabbing in roundcube webmail on 24/12/2025
Nextcloud disclosed a bug submitted by waloodi109: https://hackerone.com/reports/3367676 [...]
December CTF Challenge: Chaining XS leaks and postMessage XSS by Ayoub on 24/12/2025
At Intigriti, we host monthly web-based Capture The Flag (CTF) challenges as a way to engage with the security researcher community. December's challenge by Renwa took inspiration from the Marvel Cinematic Universe, specifically Thanos's quest to collect all six Infinity Stones. This challenge required us to chain multiple client-side vulnerabilities across different subdomains to ultimately achie [...]
When It's an Engineer's Turn to do Elf on the Shelf 🎅 on 23/12/2025
HAProxy Connection Reuse leads to IP Spoofing and mTLS Context Smuggling on 23/12/2025
curl disclosed a bug submitted by anonymous_237: https://hackerone.com/reports/3475613 [...]
The Rise of the Bionic Hacker: Real Data Shaping Cybersecurity in 2026 on 23/12/2025
libcurl WebSocket handshake accepts any Sec-WebSocket-Accept on 23/12/2025
curl disclosed a bug submitted by pwnie: https://hackerone.com/reports/3474865 [...]
Denmark Accuses Russia of Conducting Two Cyberattacks on 23/12/2025
News: The Danish Defence Intelligence Service (DDIS) announced on Thursday that Moscow was behind a cyber-attack on a Danish water utility in 2024 and a series of distributed denial-of-service (DDoS) attacks on Danish websites in the lead-up to the municipal and regional council elections in November. The first, it said, was carried out by the pro-Russian group known as Z-Pentest and the second by [...]
From Agent2Agent Prompt Injection to Runtime Self-Defense: How Wallarm Redefines Agentic AI Security by Tim Erlin on 23/12/2025
Is an AI-to-AI attack scenario a science fiction possibility only for blockbusters like the Terminator series of movies? Well, maybe not! Researchers recently discovered that one AI agent can “inject malicious instructions into a conversation, hiding them among otherwise benign client requests and server responses.” While known AI threats involve tricking an agent with malicious data, this [...]
[nextcloud/mail] Blind SSRF to Internal Network via "List-Unsubscribe" SMTP Header when allow_local_remote_servers is allowed on 23/12/2025
Nextcloud disclosed a bug submitted by lauritz: https://hackerone.com/reports/2902856 [...]
Inside H1-6102: Live Hacking Event with Salesforce in Sydney on 22/12/2025
Link unfurling calls out to arbitrary URLs and the private-network guard misses link-local addresses on 22/12/2025
Basecamp disclosed a bug submitted by brumbelow: https://hackerone.com/reports/3445890 [...]
Microsoft Is Finally Killing RC4 on 22/12/2025
After twenty-six years, Microsoft is finally upgrading the last remaining instance of the encryption algorithm RC4 in Windows. of the most visible holdouts in supporting RC4 has been Microsoft. Eventually, Microsoft upgraded Active Directory to support the much more secure AES encryption standard. But by default, Windows servers have continued to respond to RC4-based authentication requests and re [...]
well on 22/12/2025
Functional Regression in Digest Authentication: Failure to handle optional spaces and escaped quotes on 21/12/2025
curl disclosed a bug submitted by herdiyanitdev: https://hackerone.com/reports/3473384 [...]
A logic error in detect_proxy caused truncation of environment variable names for long protocol schemes. on 21/12/2025
curl disclosed a bug submitted by herdiyanitdev: https://hackerone.com/reports/3473182 [...]
The perfect tool ——- wait what’s that? on 21/12/2025
The perfect toolkit doesn’t exist on 21/12/2025
Unbounded memory consumption via compressed HTTP responses (gzip/brotli/zstd) on 21/12/2025
curl disclosed a bug submitted by gaurav0212: https://hackerone.com/reports/3471553 [...]
I asked 10+ hunters who made 500K$+ what their secret is on 20/12/2025
I need some help on 20/12/2025
Heap Buffer Over-Read via Malicious SMB Server READ_ANDX Response on 20/12/2025
curl disclosed a bug submitted by strokep: https://hackerone.com/reports/3470095 [...]
Learn Cyber Deception! on 20/12/2025
Missing AES-GCM Authentication Tag Validation and Improper Deprecation Handling on 19/12/2025
Node.js disclosed a bug submitted by sideni: https://hackerone.com/reports/3463949 [...]
Come check out my tool!! on 19/12/2025
IoT & Hardware Hacking for Beginners - Learn Fundamentals in 9+ Hours on 19/12/2025
Dismantling Defenses: Trump 2.0 Cyber Year in Review by BrianKrebs on 19/12/2025
The Trump administration has pursued a staggering range of policy pivots this past year that threaten to weaken the nation’s ability and willingness to address a broad spectrum of technology challenges, from cybersecurity and privacy to countering disinformation, fraud and corruption. These shifts, along with the president’s efforts to restrict free speech and freedom of the press, hav [...]
CISO Spotlight: Lefteris Tzelepis on Leadership, Strategy, and the Modern Security Mandate by Tim Erlin on 19/12/2025
Lefteris Tzelepis, CISO at Steelmet /Viohalco Companies, was shaped by cybersecurity. From his early exposure to real-world attacks at the Greek Ministry of Defense to building and leading security programs inside complex enterprises, his career mirrors the evolution of the CISO role itself. Now a group CISO overseeing security across multiple organizations, Lefteris brings a practitioner’s mi [...]
Can chatbots craft correct code? on 19/12/2025
I recently attended the AI Engineer Code Summit in New York, an invite-only gathering of AI leaders and engineers. One theme emerged repeatedly in conversations with attendees building with AI: the belief that we’re approaching a future where developers will never need to look at code again. When I pressed these proponents, several made a similar argument: Forty years ago, when high-level program [...]
RXSS in https://jp.mcafee.com/apps/mdm/jp/3.0_asp/ on 19/12/2025
Trellix disclosed a bug submitted by lemonoftroy: https://hackerone.com/reports/1068477 [...]
File URL UNC Path Access (Windows SSRF) on 18/12/2025
curl disclosed a bug submitted by im4x: https://hackerone.com/reports/3470649 [...]
Economic DoS (Griefing) on IBC Relayers via `memo` Callback Gas Exploitation on 18/12/2025
Cosmos disclosed a bug submitted by tychebe: https://hackerone.com/reports/3425308 [...]
3 Cybersecurity Myths I HATE on 18/12/2025
Get off your ass and give your mom a real present for Christmas on 18/12/2025
[RCE] Remote Code Execution via React Server Components Vulnerability CVE-2025-55182 on 18/12/2025
IBM disclosed a bug submitted by kanon4: https://hackerone.com/reports/3458235 [...]
IoT Hacking Stream on 18/12/2025
Intigriti Bug Bytes #231 - December 2025 🚀 by Ayoub on 18/12/2025
Hi hackers, Welcome to the latest edition of Bug Bytes! In this month’s issue, we’ll be featuring: React2Shell scanner (with WAF bypasses) Identifying server origin IP to bypass popular WAFs CSRF exploitation cheat sheet Finding vulnerabilities in sign-ups And so much more! Let’s dive in! INTIGRITI 1125 results are in November’s Intigriti Challenge was on us. 1125 brought hundreds of hack [...]
Certificate Pinning Bypass with wolfSSL backend over HTTP/3 on 17/12/2025
curl disclosed a bug submitted by anonymous_237: https://hackerone.com/reports/3468098 [...]
Heap buffer overflow in Curl_ipv4_resolve_r due to incorrect buffer alignment and size calculation on AmigaOS on 17/12/2025
curl disclosed a bug submitted by badrodin22: https://hackerone.com/reports/3468410 [...]
Introducing Pathfinding.cloud on 17/12/2025
Introducing Pathfinding.cloud, a library of AWS IAM privilege escalation paths [...]
Do Cheap Hidden Camera Detectors Work? on 16/12/2025
Most Parked Domains Now Serving Malicious Content by BrianKrebs on 16/12/2025
Direct navigation — the act of visiting a website by manually typing a domain name in a web browser — has never been riskier: A new study finds the vast majority of “parked” domains — mostly expired or dormant domain names, or common misspellings of popular websites — are now configured to redirect visitors to sites that foist scams and malware. A lookalike doma [...]
Use GWP-ASan to detect exploits in production environments on 16/12/2025
Memory safety bugs like use-after-free and buffer overflows remain among the most exploited vulnerability classes in production software. While AddressSanitizer (ASan) excels at catching these bugs during development, its performance overhead (2 to 4 times) and security concerns make it unsuitable for production. What if you could detect many of the same critical bugs in live systems with virtuall [...]
Second-Order XSS via javascript protocol in MCP Server Portal Apps leads to ATO on 16/12/2025
Cloudflare Public Bug Bounty disclosed a bug submitted by matured_kazama: https://hackerone.com/reports/3316910 [...]
Heap Overflow in cURL AmigaOS Socket Implementation on 16/12/2025
curl disclosed a bug submitted by the-pink-panther: https://hackerone.com/reports/3466896 [...]
Curl Alt-Svc Parser Stack Buffer Overflow on 16/12/2025
curl disclosed a bug submitted by the-pink-panther: https://hackerone.com/reports/3466883 [...]