DEV Community

Security

Hopefully not just an afterthought!

Posts

đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.
CVE-2025-69224: Absolute Zero Security: Smuggling Requests into aiohttp with the Kelvin Sign
cverports profile

CVE-2025-69224: Absolute Zero Security: Smuggling Requests into aiohttp with the Kelvin Sign

#security #cve #cybersecurity
Comments
2 min read
CVE-2017-5638: The Billion Dollar Header: Inside the Apache Struts 2 'Equifax' RCE
cverports profile

CVE-2017-5638: The Billion Dollar Header: Inside the Apache Struts 2 'Equifax' RCE

#security #cve #cybersecurity
Comments
2 min read
CVE-2025-69226: AIOHTTP Side-Channel: When 403 Means 'I See You'
cverports profile

CVE-2025-69226: AIOHTTP Side-Channel: When 403 Means 'I See You'

#security #cve #cybersecurity
Comments
2 min read
CVE-2025-69223: Puff, The Magic Dragon: Exploding RAM with aiohttp Zip Bombs
cverports profile

CVE-2025-69223: Puff, The Magic Dragon: Exploding RAM with aiohttp Zip Bombs

#security #cve #cybersecurity
Comments
2 min read
CVE-2025-65091: Calendar of Doom: A Critical HQL Injection in XWiki
cverports profile

CVE-2025-65091: Calendar of Doom: A Critical HQL Injection in XWiki

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-22798: Loose Lips Sink Ships: How Hermes Logged Its Way into a Security Nightmare
cverports profile

CVE-2026-22798: Loose Lips Sink Ships: How Hermes Logged Its Way into a Security Nightmare

#security #cve #cybersecurity
Comments
2 min read
GHSA-MQQF-5WVP-8FH8: Slashing Through the Safety Nets: The go-chi Open Redirect
cverports profile

GHSA-MQQF-5WVP-8FH8: Slashing Through the Safety Nets: The go-chi Open Redirect

#security #cve #cybersecurity #ghsa
Comments
2 min read
CVE-2026-0859: CamelCase Catastrophe: How a Typo in TYPO3 Enabled RCE
cverports profile

CVE-2026-0859: CamelCase Catastrophe: How a Typo in TYPO3 Enabled RCE

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-23643: Let Them Eat XSS: Breaking CakePHP's PaginatorHelper
cverports profile

CVE-2026-23643: Let Them Eat XSS: Breaking CakePHP's PaginatorHelper

#security #cve #cybersecurity
Comments
2 min read
GHSA-H3HW-29FV-2X75: Context Bleeding: When GraphQL Requests Swap Identities in Envelop
cverports profile

GHSA-H3HW-29FV-2X75: Context Bleeding: When GraphQL Requests Swap Identities in Envelop

#security #cve #cybersecurity #ghsa
Comments
2 min read
CVE-2026-23991: Panic at the Distro: Crashing go-tuf with Malformed JSON
cverports profile

CVE-2026-23991: Panic at the Distro: Crashing go-tuf with Malformed JSON

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-23946: Pickle Rick-rolled Again: The Zombie RCE in Tendenci CMS
cverports profile

CVE-2026-23946: Pickle Rick-rolled Again: The Zombie RCE in Tendenci CMS

#security #cve #cybersecurity
Comments
2 min read
I Built a Postgres Proxy That Masks PII for AI Agents
merc3q65 profile

I Built a Postgres Proxy That Masks PII for AI Agents

#ai #postgres #security #opensource
Comments
1 min read
CVE-2025-69229: Death by a Thousand Chunks: The aiohttp O(N^2) DoS
cverports profile

CVE-2025-69229: Death by a Thousand Chunks: The aiohttp O(N^2) DoS

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-22036: Death by a Thousand Gzips: The Node.js Undici Decompression Loop
cverports profile

CVE-2026-22036: Death by a Thousand Gzips: The Node.js Undici Decompression Loop

#security #cve #cybersecurity
Comments
2 min read
đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.