LOS ANGELES (June 20, 2025) – Building on the tradition of its annual Winter Solstice event, Los Angeles Department of Water and Power (LADWP) is co-hosting a Summer Solstice celebration at the Chatsworth Nature Preserve in partnership with the Santa Susana Mountain Park Association, Sky Valley Volunteers, and the Herp Connection. | LADWP News
This advisory is the eduroam response to the attack “Blast!RADIUS - RADIUS/UDP considered harmful” as published on 09 July 2024 at https://blastradius.fail . Readers are encouraged to read the FAQs on that website and https://www.inkbridgenetworks.com/blastradius/faq prior to reading the details of this advisory. Conclusions: eduroam authentications are NOT affected by this attack. Hotspot operators should cautiously check the| eduroam.org
Unsafe File Upload and Directory Traversal in Fortra FileCatalyst Workflow and Direct allow an unauthenticated attacker to gain RCE.| LRQA Nettitude Labs
During some tests of TLS libraries I found a stack buffer overflow vulnerability in the WolfSSL library.| The Fuzzing Project
If you're using the HTTP protocol in everday Internet use you are usually only using two of its methods: GET and POST. However HTTP has a number of other methods, so I wondered what you can do with them and if there are any vulnerabilities.| blog.fuzzing-project.org
This post first appeared on oss-security.| The Fuzzing Project
The way the Apache httpd web server handles password hashes can be abused by a malicious user on a server to cause resource exhaustion and denial of service of the web server. I reported this a while ago to the Apache security team - which led to a lengthy discussion where I was a bit appalled about some of the statements I got from the Apache developers. They can be summed up in a way that major use cases of Apache - especially in web hosting environments - are not recommended by their devel...| The Fuzzing Project
When using fuzzing tools like afl a common challenge is how you can pass input to the interesting parts of the application you want to fuzz. In easy situations we have a tool that will accept our input as a file or via stdin. However sometimes this is not easily possible.| The Fuzzing Project
By testing GNOME-related packages with Address Sanitizer I recently discovered several trivial to find bugs.| The Fuzzing Project
Last year in November I decided that it might be a good idea to fuzz the parsers of package management tools in Linux distributions. I quickly found a couple of issues in DPKG and RPM. For DPKG the process went very smooth. I reported them to Debian's security team, eight days later fixes and security advisories were published by both Debian and Ubuntu, the main distributions using DPKG. For RPM the process was a bit more difficult.| The Fuzzing Project
Published on| offsec.almond.consulting
Arbitrary file creation| offsec.almond.consulting
Published on| offsec.almond.consulting
Published on| offsec.almond.consulting
Published on| offsec.almond.consulting
Published on| offsec.almond.consulting
Published on| offsec.almond.consulting
Published on| offsec.almond.consulting
Published on| offsec.almond.consulting
A logic bug enables a trivial bypass of the basic authentication mechanism of the proxy.| cardaci.xyz
Improper sanitization causes malicious JavaScript code in received emails to be executed when the message is displayed.| cardaci.xyz
The fix for CVE-2019-9858 (arbitrary file upload vulnerability) simply restricts the target directory to the temp folder. This, in combination with other vulnerabilities, allows an authenticated regular user to execute PHP and shell code as the user that runs the web server.| cardaci.xyz
A vulnerability in the handling of CSV data import allows authenticated users to inject arbitrary PHP code thus achieving RCE on the server hosting the web application.| cardaci.xyz
Privilege escalation to root can be achieved by a regular user via the password reset form exploiting a directory traversal vulnerability.| cardaci.xyz
Privilege escalation to root can be achieved by a regular user via the file upload handler exploiting an insufficient shell escaping mechanism.| cardaci.xyz
The insufficient output sanitization and inappropriate content type of the responses of the file manager API allows to run arbitrary JavaScript code in the context of the web application.| cardaci.xyz
Improper sanitization causes malicious JavaScript code in received emails to be executed when the message is displayed.| cardaci.xyz