Tootfinder

Opt-in global Mastodon full text search. Join the index!

No exact results. Similar results found.
@adulau@infosec.exchange
2025-12-03 19:57:37

“A pre-authentication remote code execution vulnerability exists in React Server Components versions 19.0.0, 19.1.0, 19.1.1, and 19.2.0 including the following packages: react-server-dom-parcel, react-server-dom-turbopack, and react-server-dom-webpack. The vulnerable code unsafely deserializes payloads from HTTP requests to Server Function endpoints.“
#vulnerability

cvelistv5 - CVE-2025-55182
Vulnerability-Lookup - Fast vulnerability lookup correlation from different sources.

@floheinstein@chaos.social
2025-11-24 13:58:39

"I have no internet on my machine anymore". OK, on-site visit.
Me: "What's that connection here?"
"Oh yeah, that colleague added a Wireguard Tunnel on my PC so I can access his server."
M-hm. Let's check the config...
AllowedIPs = 0.0.0.0/0, ::/0
ARE YOU KIDDING ME?!?

Chef Gordon Ramsey shouting at someone "ARE YOU KIDDING ME!"
@jtk@infosec.exchange
2025-12-20 03:16:06

When you're trying to get #Google to help them fix a problem they have in relaying an email to a list (they are forwarding as if it they are originating your non-GMail email, thus incurring an SPF failure) their helpful support team to the rescue (see image attached).
FYI... the second thing they want is a screen cap of the client SMTP config.
Very temped to send a screenshot wit…

Thank you for reaching out to Google Workspace Support. This is Jolina, and | hope this message finds you well Thank you for your patience as we look into the issues you've been experiencing with your email integration. To help our technical team pinpoint exactly why the connection is failing, we need a bit more visibility into how your third-party application is communicating with our servers. Could you please provide the following two items? A Screen Recording: Please record your scre…