169 - Racing Grafana, Stealing Mastadon Passwords, and Cross-Site Tracing Bypassing an authentication check in AWS AppSync by changing the... 2022-11-23 04:45:20 | 阅读: 16 | 收藏 | dayzerosec.com appsync arn memory verbs abbr

168 - Exploiting Undefined Behavior and a Chrome UAF No specific issue here just talking about what divergent representations are. A divergent re... 2022-11-17 07:45:31 | 阅读: 11 | 收藏 | dayzerosec.com divergent semantics concrete wiht

167 - Bypassing Pixel Lock Screens and Checkmk RCE Bit of a race condition leading to a lock screen bypass on Pixel devices.The process of explo... 2022-11-16 04:45:59 | 阅读: 16 | 收藏 | dayzerosec.com attacker injection puk lql bypass

166 - OpenSSL Off-by-One, Java XML Bugs, and an In-the-Wild Samsung Chain Off-by-one issue as the bounds check if (written_out > max_out) will continue for one extra ite... 2022-11-10 08:45:12 | 阅读: 11 | 收藏 | dayzerosec.com samsung clipboard attacker decon xslt

165 - Apache Batik, Static Site Generators, and an Android App Vuln A somewhat simple security control bypass in Apache Batik’s Defau... 2022-11-9 05:0:27 | 阅读: 12 | 收藏 | dayzerosec.com attacker gitlab repository ssrf somewhat

164 - XNU’s kalloc_type, Stranger Strings, and a NetBSD Bug Fairly straightforward refcount leak bug in the... 2022-11-3 07:45:36 | 阅读: 12 | 收藏 | dayzerosec.com overflow somewhat destroyed passes calculating

163 - A Galaxy Store Bug, Facebook CSRF, and Google IDOR There seems to be a lot of gaps in this writeup, but to the... 2022-11-2 03:45:24 | 阅读: 16 | 收藏 | dayzerosec.com chunked galaxystore straight captcha download

162 - Edge Vulns, a SHA-3 Overflow, and an io_uring Exploit Multiple memory corruptions in Microsoft Edge browser, t... 2022-10-27 07:45:15 | 阅读: 11 | 收藏 | dayzerosec.com dialog corruptions closing overflow cue

161 - XMPP Stanza Smuggling in Jabber and a Cobalt Strike RCE A vuln where ultimately untrusted input can make its way into eva... 2022-10-26 03:45:57 | 阅读: 13 | 收藏 | dayzerosec.com attacker perl wordpress routed vuln