Create accountLogin

Recent searches

No recent searches

Search options

Only available when logged in.
en.osm.town is one of the many independent Mastodon servers you can use to participate in the fediverse.
An independent, community of OpenStreetMap people on the Fediverse/Mastodon. Funding graciously provided by the OpenStreetMap Foundation.

Administered by:

Server stats:

259
active users

en.osm.town: AboutProfiles directoryPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.3.7

#vulnerability

13 posts12 participants0 posts today
Public
Alexandre Dulaunoy

Just a reminder: Vulnerability Lookup isn’t just about finding CVEs. It supports the full chain, collection from multiple sources, continuous distribution, and allocation within a coordinated vulnerability disclosure (CVD) process. 100% open source.

🔗 An online version maintained by @circl vulnerability.circl.lu/

🔗 vulnerability-lookup.org/

🔗 github.com/vulnerability-looku

vulnerability.circl.luVulnerability-LookupVulnerability-Lookup - Fast vulnerability lookup correlation from different sources.
#opensource#cve#vulnerability
Public
Jenny :bocchi8:

Post traducido de Astro Android [t.me/AstroAndroid/163]

🔍Appknox encontró 10 errores de alto riesgo en la app de Perplexity AI para Android, incluso más que DeepSeek

⚠️ Los problemas incluyen claves API codificadas, falta de SSL, clickjacking, vulnerabilidades de Android antiguas y fallos CORS. Fácil de explotar, lo que pone en riesgo los datos de los usuarios.

📵 Se recomienda a los usuarios a desinstalar la app lo antes posible

Fuente: a.devs.today/https://www.darkr

TelegramAstro Android🔍 Appknox found 10 high-risk bugs in Perplexity AI’s Android app — more than even DeepSeek ⚠️ Issues include hardcoded API keys, no SSL, clickjacking, old Android vulns & CORS flaws. Easy to exploit, risking user data. 📵 Users urged to uninstall ASAP. 🧾 Read: https://a.devs.today/https://www.darkreading.com/application-security/11-bugs-found-perplexity-chatbots-android-app
#Android#Vulnerability#Malware
Public *
Mark Gardner
The Perl 5 Porters have released #Perl versions 5.40.2 and 5.38.4 to address CVE-2024-56406. It is believed that this #security #vulnerability can enable Denial of Service or Arbitrary Code Execution attacks on platforms that lack sufficient defenses.

You can soon download both from your favorite #CPAN mirror or find them at:

https://metacpan.org/release/SHAY/perl-5.40.2/

https://metacpan.org/release/SHAY/perl-5.38.4/

Changes are listed in their respective “perldelta” documents:

https://metacpan.org/release/SHAY/perl-5.40.2/view/pod/perldelta.pod

https://metacpan.org/release/SHAY/perl-5.38.4/view/pod/perldelta.pod
MetaCPANperl-5.40.2The Perl 5 language interpreter
Public
Danie van der Merwe

Hackers Exploit WordPress mu-Plugins to Inject Spam and Hijack Site Images

“Threat actors are using the “mu-plugins” directory in WordPress sites to conceal malicious code with the goal of maintaining persistent remote access and redirecting site visitors to bogus sites.mu-plugins, short for must-use plugins, refers to plu ...continues

See gadgeteer.co.za/hackers-exploi

A laptop displaying a WordPress login screen, featuring a password field and a faint handprint in the background.
GadgeteerZA · Hackers Exploit WordPress mu-Plugins to Inject Spam and Hijack Site Images“Threat actors are using the “mu-plugins” directory in WordPress sites to conceal malicious code with the goal of maintaining persistent remote access and
#security#technology#vulnerability
Public
thereisnoanderson

NEW - ⛸️🧱🖥️

DCG Domain Blocklist available - last updated 2025/04/08

1689244 - Domains blocked with that build !

🦜
🐻
Supercharging your content blocker to increase privacy and security.

All available lists:
- uBlockOrigin
- Hosts format & Hosts format with wildcards
- dnsmasq with wildcards

🌳
Ready to use lists combined from many permissively licensed sources.

divested.dev/pages/dnsbl

#divested #DivestedComputingGroup

#DCG

#fsf #FUTO #Fedora #codeberg #hardening #linuxtech #cybersec #cybersecurity #infosec #antivirus #hackernews
#opensource #linuxsecurity #vulnerabilities #vulnerability #alpinelinux #router #skynet #foss #freeyourmind

divested.devDnsbl - Divested Computing
Public *
thereisnoanderson

NEW - 🛡️ 🖥️ 🛡️

DCG Brace Build 2025/04/04 - 1

Release Note: Fix bluetooth on F42

🦜
🐻
Toolkit compatible with multiple Linux distros that allows for installation of handpicked applications, along with corresponding configs that have been tuned for reasonable privacy and security.

🌳
Compatibility:
Arch Linux
CentOS 9/Stream
Debian 12
Fedora 39/40/41 (preferred)
openSUSE Tumbleweed
🌳
codeberg.org/divested/brace

#divested
#DivestedComputingGroup
🌳
#fsf #FUTO #Fedora #codeberg #hardening #linuxtech #cybersec #cybersecurity #infosec #antivirus
#opensource #linuxsecurity #vulnerabilities #vulnerability #alpinelinux #skynet #foss #freeyourmind

Summary card of repository divested/brace
Codeberg.orgbraceToolkit compatible with multiple Linux distros that allows for installation of handpicked applications, along with corresponding configs that have been tuned for reasonable privacy and security.
Public
BeyondMachines :verified:

Apple releases major security updates addressing Zero-Day vulnerabilities and multiple security flaws
#cybersecurity #infosec #advisory #vulnerability
beyondmachines.net/event_detai

BeyondMachinesApple releases major security updates addressing Zero-Day vulnerabilities and multiple security flawsApple has released comprehensive security updates across its ecosystem to fix three actively exploited zero-day vulnerabilities (CVE-2025-24200, CVE-2025-24201, CVE-2025-24085) and address hundreds of other security issues in iOS, iPadOS, macOS, watchOS, tvOS, and visionOS, with critical fixes also being backported to older operating system versions for legacy devices.
ExploreLive feeds
About