home.social

#rce β€” Public Fediverse posts

Live and recent posts from across the Fediverse tagged #rce, aggregated by home.social.

  1. πŸ“° Microsoft Patches High-Severity SharePoint RCE Vulnerability (CVE-2026-45659)

    🚨 Microsoft patches high-severity RCE flaw (CVE-2026-45659, CVSS 8.8) in SharePoint Server. Authenticated attackers with low privileges can execute code remotely. On-premise admins: Patch now! #SharePoint #CyberSecurity #PatchTuesday #RCE

    🌐 cyber[.]netsecops[.]io

    πŸ”— cyber.netsecops.io/articles/mi

  2. πŸ“° Microsoft Patches High-Severity SharePoint RCE Vulnerability (CVE-2026-45659)

    🚨 Microsoft patches high-severity RCE flaw (CVE-2026-45659, CVSS 8.8) in SharePoint Server. Authenticated attackers with low privileges can execute code remotely. On-premise admins: Patch now! #SharePoint #CyberSecurity #PatchTuesday #RCE

    🌐 cyber[.]netsecops[.]io

    πŸ”— cyber.netsecops.io/articles/mi

  3. ⚠️ Falla in KnowledgeDeliver consente potenziale esecuzione di codice remoto: aggiornare subito e verificare le istanze esposte. #CyberSecurity #RCE

    πŸ”— tomshw.it/hardware/knowledgede

  4. ⚠️ Falla in KnowledgeDeliver consente potenziale esecuzione di codice remoto: aggiornare subito e verificare le istanze esposte. #CyberSecurity #RCE

    πŸ”— tomshw.it/hardware/knowledgede

  5. ⚠️ Falla in KnowledgeDeliver consente potenziale esecuzione di codice remoto: aggiornare subito e verificare le istanze esposte. #CyberSecurity #RCE

    πŸ”— tomshw.it/hardware/knowledgede

  6. Laravel Lang Compromised with RCE Backdoor Across 700+ Versions

    Community-maintained Laravel Lang packages were compromised with remote code execution backdoors affecting over 700 versions across multiple repositories including laravel-lang/lang, laravel-lang/http-statuses, laravel-lang/attributes, and laravel-lang/actions. The attack involved coordinated rapid tag publishing on May 22-23, 2026, suggesting organization-level credential compromise. A malicious helpers.php file was automatically executed via Composer's autoloader, deploying a sophisticated cross-platform information stealer. The second-stage payload systematically harvested credentials from cloud infrastructure, Kubernetes, CI/CD systems, browsers, password managers, cryptocurrency wallets, VPN clients, and local configurations. Stolen data was encrypted and exfiltrated to a command-and-control server. The backdoor employed advanced evasion techniques including TLS verification bypass, per-host execution markers, and embedded Windows executables to bypass Chrome encryption protections.

    Pulse ID: 6a1187d92cdbfd79095008cd
    Pulse Link: otx.alienvault.com/pulse/6a118
    Pulse Author: AlienVault
    Created: 2026-05-23 10:56:25

    Be advised, this data is unverified and should be considered preliminary. Always do further verification.

    #BackDoor #Browser #Chrome #Cloud #CyberSecurity #Encryption #HTTP #InfoSec #OTX #OpenThreatExchange #PHP #Password #RAT #RCE #RemoteCodeExecution #TLS #VPN #Windows #Word #bot #cryptocurrency #AlienVault

  7. Laravel Lang Compromised with RCE Backdoor Across 700+ Versions

    Community-maintained Laravel Lang packages were compromised with remote code execution backdoors affecting over 700 versions across multiple repositories including laravel-lang/lang, laravel-lang/http-statuses, laravel-lang/attributes, and laravel-lang/actions. The attack involved coordinated rapid tag publishing on May 22-23, 2026, suggesting organization-level credential compromise. A malicious helpers.php file was automatically executed via Composer's autoloader, deploying a sophisticated cross-platform information stealer. The second-stage payload systematically harvested credentials from cloud infrastructure, Kubernetes, CI/CD systems, browsers, password managers, cryptocurrency wallets, VPN clients, and local configurations. Stolen data was encrypted and exfiltrated to a command-and-control server. The backdoor employed advanced evasion techniques including TLS verification bypass, per-host execution markers, and embedded Windows executables to bypass Chrome encryption protections.

    Pulse ID: 6a1187d92cdbfd79095008cd
    Pulse Link: otx.alienvault.com/pulse/6a118
    Pulse Author: AlienVault
    Created: 2026-05-23 10:56:25

    Be advised, this data is unverified and should be considered preliminary. Always do further verification.

    #BackDoor #Browser #Chrome #Cloud #CyberSecurity #Encryption #HTTP #InfoSec #OTX #OpenThreatExchange #PHP #Password #RAT #RCE #RemoteCodeExecution #TLS #VPN #Windows #Word #bot #cryptocurrency #AlienVault

  8. Laravel Lang Compromised with RCE Backdoor Across 700+ Versions

    Community-maintained Laravel Lang packages were compromised with remote code execution backdoors affecting over 700 versions across multiple repositories including laravel-lang/lang, laravel-lang/http-statuses, laravel-lang/attributes, and laravel-lang/actions. The attack involved coordinated rapid tag publishing on May 22-23, 2026, suggesting organization-level credential compromise. A malicious helpers.php file was automatically executed via Composer's autoloader, deploying a sophisticated cross-platform information stealer. The second-stage payload systematically harvested credentials from cloud infrastructure, Kubernetes, CI/CD systems, browsers, password managers, cryptocurrency wallets, VPN clients, and local configurations. Stolen data was encrypted and exfiltrated to a command-and-control server. The backdoor employed advanced evasion techniques including TLS verification bypass, per-host execution markers, and embedded Windows executables to bypass Chrome encryption protections.

    Pulse ID: 6a1187d92cdbfd79095008cd
    Pulse Link: otx.alienvault.com/pulse/6a118
    Pulse Author: AlienVault
    Created: 2026-05-23 10:56:25

    Be advised, this data is unverified and should be considered preliminary. Always do further verification.

    #BackDoor #Browser #Chrome #Cloud #CyberSecurity #Encryption #HTTP #InfoSec #OTX #OpenThreatExchange #PHP #Password #RAT #RCE #RemoteCodeExecution #TLS #VPN #Windows #Word #bot #cryptocurrency #AlienVault

  9. Laravel Lang Compromised with RCE Backdoor Across 700+ Versions

    Community-maintained Laravel Lang packages were compromised with remote code execution backdoors affecting over 700 versions across multiple repositories including laravel-lang/lang, laravel-lang/http-statuses, laravel-lang/attributes, and laravel-lang/actions. The attack involved coordinated rapid tag publishing on May 22-23, 2026, suggesting organization-level credential compromise. A malicious helpers.php file was automatically executed via Composer's autoloader, deploying a sophisticated cross-platform information stealer. The second-stage payload systematically harvested credentials from cloud infrastructure, Kubernetes, CI/CD systems, browsers, password managers, cryptocurrency wallets, VPN clients, and local configurations. Stolen data was encrypted and exfiltrated to a command-and-control server. The backdoor employed advanced evasion techniques including TLS verification bypass, per-host execution markers, and embedded Windows executables to bypass Chrome encryption protections.

    Pulse ID: 6a1187d92cdbfd79095008cd
    Pulse Link: otx.alienvault.com/pulse/6a118
    Pulse Author: AlienVault
    Created: 2026-05-23 10:56:25

    Be advised, this data is unverified and should be considered preliminary. Always do further verification.

    #BackDoor #Browser #Chrome #Cloud #CyberSecurity #Encryption #HTTP #InfoSec #OTX #OpenThreatExchange #PHP #Password #RAT #RCE #RemoteCodeExecution #TLS #VPN #Windows #Word #bot #cryptocurrency #AlienVault

  10. Laravel Lang Compromised with RCE Backdoor Across 700+ Versions

    Community-maintained Laravel Lang packages were compromised with remote code execution backdoors affecting over 700 versions across multiple repositories including laravel-lang/lang, laravel-lang/http-statuses, laravel-lang/attributes, and laravel-lang/actions. The attack involved coordinated rapid tag publishing on May 22-23, 2026, suggesting organization-level credential compromise. A malicious helpers.php file was automatically executed via Composer's autoloader, deploying a sophisticated cross-platform information stealer. The second-stage payload systematically harvested credentials from cloud infrastructure, Kubernetes, CI/CD systems, browsers, password managers, cryptocurrency wallets, VPN clients, and local configurations. Stolen data was encrypted and exfiltrated to a command-and-control server. The backdoor employed advanced evasion techniques including TLS verification bypass, per-host execution markers, and embedded Windows executables to bypass Chrome encryption protections.

    Pulse ID: 6a1187d92cdbfd79095008cd
    Pulse Link: otx.alienvault.com/pulse/6a118
    Pulse Author: AlienVault
    Created: 2026-05-23 10:56:25

    Be advised, this data is unverified and should be considered preliminary. Always do further verification.

    #BackDoor #Browser #Chrome #Cloud #CyberSecurity #Encryption #HTTP #InfoSec #OTX #OpenThreatExchange #PHP #Password #RAT #RCE #RemoteCodeExecution #TLS #VPN #Windows #Word #bot #cryptocurrency #AlienVault

  11. CVE, Shell ΠΈ ΠΏΠΎΠ±Π΅Π³ ΠΈΠ· ΠΊΠΎΠ½Ρ‚Π΅ΠΉΠ½Π΅Ρ€Π°: испытываСм возмоТности PT Cloud Application Firewall

    ΠŸΡ€ΠΈΠ²Π΅Ρ‚, Π₯Π°Π±Ρ€! МСня Π·ΠΎΠ²ΡƒΡ‚ Иван Π§Π΅Π±ΠΎΡ‚Π°Ρ€Π΅Π², ΠΈΠ½ΠΆΠ΅Π½Π΅Ρ€ направлСния Π·Π°Ρ‰ΠΈΡ‚Ρ‹ ΠΏΡ€ΠΈΠ»ΠΎΠΆΠ΅Π½ΠΈΠΉ Π² К2 ΠšΠΈΠ±Π΅Ρ€Π±Π΅Π·ΠΎΠΏΠ°ΡΠ½ΠΎΡΡ‚ΡŒ . Π’ ΡΡ‚Π°Ρ‚ΡŒΠ΅ Ρ€Π°ΡΡΠΌΠΎΡ‚Ρ€ΡŽ, ΠΊΠ°ΠΊ PT Cloud Application Firewall (ucWAF) Ρ€Π΅Π°Π³ΠΈΡ€ΡƒΠ΅Ρ‚ Π½Π° ΠΏΠΎΠ±Π΅Π³ ΠΈΠ· ΠΊΠΎΠ½Ρ‚Π΅ΠΉΠ½Π΅Ρ€Π° послС RCE с использованиСм Π½ΠΎΠ²ΠΎΠΉ CVE-2025-55182 . Π­Ρ‚ΠΎ ΡƒΡΠ·Π²ΠΈΠΌΠΎΡΡ‚ΡŒ Π² Next.js, ΠΎΡ‚ΠΊΡ€Ρ‹Π²Π°ΡŽΡ‰Π°Ρ Remote Code Execution Ρ‡Π΅Ρ€Π΅Π· ΠΌΠ΅Ρ…Π°Π½ΠΈΠ·ΠΌ Server Actions. Π― собрал тСстовый стСнд с уязвимым Next.js-ΠΈ ΠΏΡ€ΠΎΠ²Π΅Ρ€ΠΈΠ»: классичСский Π²Π΅Π±-шСлл, Reverse Shell ΠΈ ΠΏΠΎΠ±Π΅Π³ ΠΈΠ· ΠΊΠΎΠ½Ρ‚Π΅ΠΉΠ½Π΅Ρ€Π°. Next.js β€” ΠΎΠ΄ΠΈΠ½ ΠΈΠ· самых популярных Ρ„Ρ€Π΅ΠΉΠΌΠ²ΠΎΡ€ΠΊΠΎΠ² для Ρ„Ρ€ΠΎΠ½Ρ‚Π΅Π½Π΄Π°, Π° Server Actions Π²ΠΊΠ»ΡŽΡ‡Π΅Π½Ρ‹ ΠΏΠΎ ΡƒΠΌΠΎΠ»Ρ‡Π°Π½ΠΈΡŽ начиная с 14-ΠΉ вСрсии. Если Π²Ρ‹ Π΄Π΅ΠΏΠ»ΠΎΠΈΡ‚Π΅ Next.js Π² ΠΊΠΎΠ½Ρ‚Π΅ΠΉΠ½Π΅Ρ€Π°Ρ…, эта ΡΡ‚Π°Ρ‚ΡŒΡ ΠΏΠΎΠΊΠ°ΠΆΠ΅Ρ‚, ΠΊΠ°ΠΊ выглядит полная Ρ†Π΅ΠΏΠΎΡ‡ΠΊΠ° ΠΎΡ‚ RCE Π΄ΠΎ Π²Ρ‹Ρ…ΠΎΠ΄Π° Π½Π° хост, ΠΈ Π½Π° ΠΊΠ°ΠΊΠΎΠΌ этапС WAF ΠΌΠΎΠΆΠ΅Ρ‚ Π΅Π΅ ΠΎΡΡ‚Π°Π½ΠΎΠ²ΠΈΡ‚ΡŒ.

    habr.com/ru/companies/k2tech/a

    #cve202555182 #nextjs #server_actions #waf #pt_cloud_application_firewall #rce #reverse_shell #ΠΏΠΎΠ±Π΅Π³_ΠΈΠ·_ΠΊΠΎΠ½Ρ‚Π΅ΠΉΠ½Π΅Ρ€Π° #docker

  12. CVE, Shell ΠΈ ΠΏΠΎΠ±Π΅Π³ ΠΈΠ· ΠΊΠΎΠ½Ρ‚Π΅ΠΉΠ½Π΅Ρ€Π°: испытываСм возмоТности PT Cloud Application Firewall

    ΠŸΡ€ΠΈΠ²Π΅Ρ‚, Π₯Π°Π±Ρ€! МСня Π·ΠΎΠ²ΡƒΡ‚ Иван Π§Π΅Π±ΠΎΡ‚Π°Ρ€Π΅Π², ΠΈΠ½ΠΆΠ΅Π½Π΅Ρ€ направлСния Π·Π°Ρ‰ΠΈΡ‚Ρ‹ ΠΏΡ€ΠΈΠ»ΠΎΠΆΠ΅Π½ΠΈΠΉ Π² К2 ΠšΠΈΠ±Π΅Ρ€Π±Π΅Π·ΠΎΠΏΠ°ΡΠ½ΠΎΡΡ‚ΡŒ . Π’ ΡΡ‚Π°Ρ‚ΡŒΠ΅ Ρ€Π°ΡΡΠΌΠΎΡ‚Ρ€ΡŽ, ΠΊΠ°ΠΊ PT Cloud Application Firewall (ucWAF) Ρ€Π΅Π°Π³ΠΈΡ€ΡƒΠ΅Ρ‚ Π½Π° ΠΏΠΎΠ±Π΅Π³ ΠΈΠ· ΠΊΠΎΠ½Ρ‚Π΅ΠΉΠ½Π΅Ρ€Π° послС RCE с использованиСм Π½ΠΎΠ²ΠΎΠΉ CVE-2025-55182 . Π­Ρ‚ΠΎ ΡƒΡΠ·Π²ΠΈΠΌΠΎΡΡ‚ΡŒ Π² Next.js, ΠΎΡ‚ΠΊΡ€Ρ‹Π²Π°ΡŽΡ‰Π°Ρ Remote Code Execution Ρ‡Π΅Ρ€Π΅Π· ΠΌΠ΅Ρ…Π°Π½ΠΈΠ·ΠΌ Server Actions. Π― собрал тСстовый стСнд с уязвимым Next.js-ΠΈ ΠΏΡ€ΠΎΠ²Π΅Ρ€ΠΈΠ»: классичСский Π²Π΅Π±-шСлл, Reverse Shell ΠΈ ΠΏΠΎΠ±Π΅Π³ ΠΈΠ· ΠΊΠΎΠ½Ρ‚Π΅ΠΉΠ½Π΅Ρ€Π°. Next.js β€” ΠΎΠ΄ΠΈΠ½ ΠΈΠ· самых популярных Ρ„Ρ€Π΅ΠΉΠΌΠ²ΠΎΡ€ΠΊΠΎΠ² для Ρ„Ρ€ΠΎΠ½Ρ‚Π΅Π½Π΄Π°, Π° Server Actions Π²ΠΊΠ»ΡŽΡ‡Π΅Π½Ρ‹ ΠΏΠΎ ΡƒΠΌΠΎΠ»Ρ‡Π°Π½ΠΈΡŽ начиная с 14-ΠΉ вСрсии. Если Π²Ρ‹ Π΄Π΅ΠΏΠ»ΠΎΠΈΡ‚Π΅ Next.js Π² ΠΊΠΎΠ½Ρ‚Π΅ΠΉΠ½Π΅Ρ€Π°Ρ…, эта ΡΡ‚Π°Ρ‚ΡŒΡ ΠΏΠΎΠΊΠ°ΠΆΠ΅Ρ‚, ΠΊΠ°ΠΊ выглядит полная Ρ†Π΅ΠΏΠΎΡ‡ΠΊΠ° ΠΎΡ‚ RCE Π΄ΠΎ Π²Ρ‹Ρ…ΠΎΠ΄Π° Π½Π° хост, ΠΈ Π½Π° ΠΊΠ°ΠΊΠΎΠΌ этапС WAF ΠΌΠΎΠΆΠ΅Ρ‚ Π΅Π΅ ΠΎΡΡ‚Π°Π½ΠΎΠ²ΠΈΡ‚ΡŒ.

    habr.com/ru/companies/k2tech/a

    #cve202555182 #nextjs #server_actions #waf #pt_cloud_application_firewall #rce #reverse_shell #ΠΏΠΎΠ±Π΅Π³_ΠΈΠ·_ΠΊΠΎΠ½Ρ‚Π΅ΠΉΠ½Π΅Ρ€Π° #docker

  13. CVE, Shell ΠΈ ΠΏΠΎΠ±Π΅Π³ ΠΈΠ· ΠΊΠΎΠ½Ρ‚Π΅ΠΉΠ½Π΅Ρ€Π°: испытываСм возмоТности PT Cloud Application Firewall

    ΠŸΡ€ΠΈΠ²Π΅Ρ‚, Π₯Π°Π±Ρ€! МСня Π·ΠΎΠ²ΡƒΡ‚ Иван Π§Π΅Π±ΠΎΡ‚Π°Ρ€Π΅Π², ΠΈΠ½ΠΆΠ΅Π½Π΅Ρ€ направлСния Π·Π°Ρ‰ΠΈΡ‚Ρ‹ ΠΏΡ€ΠΈΠ»ΠΎΠΆΠ΅Π½ΠΈΠΉ Π² К2 ΠšΠΈΠ±Π΅Ρ€Π±Π΅Π·ΠΎΠΏΠ°ΡΠ½ΠΎΡΡ‚ΡŒ . Π’ ΡΡ‚Π°Ρ‚ΡŒΠ΅ Ρ€Π°ΡΡΠΌΠΎΡ‚Ρ€ΡŽ, ΠΊΠ°ΠΊ PT Cloud Application Firewall (ucWAF) Ρ€Π΅Π°Π³ΠΈΡ€ΡƒΠ΅Ρ‚ Π½Π° ΠΏΠΎΠ±Π΅Π³ ΠΈΠ· ΠΊΠΎΠ½Ρ‚Π΅ΠΉΠ½Π΅Ρ€Π° послС RCE с использованиСм Π½ΠΎΠ²ΠΎΠΉ CVE-2025-55182 . Π­Ρ‚ΠΎ ΡƒΡΠ·Π²ΠΈΠΌΠΎΡΡ‚ΡŒ Π² Next.js, ΠΎΡ‚ΠΊΡ€Ρ‹Π²Π°ΡŽΡ‰Π°Ρ Remote Code Execution Ρ‡Π΅Ρ€Π΅Π· ΠΌΠ΅Ρ…Π°Π½ΠΈΠ·ΠΌ Server Actions. Π― собрал тСстовый стСнд с уязвимым Next.js-ΠΈ ΠΏΡ€ΠΎΠ²Π΅Ρ€ΠΈΠ»: классичСский Π²Π΅Π±-шСлл, Reverse Shell ΠΈ ΠΏΠΎΠ±Π΅Π³ ΠΈΠ· ΠΊΠΎΠ½Ρ‚Π΅ΠΉΠ½Π΅Ρ€Π°. Next.js β€” ΠΎΠ΄ΠΈΠ½ ΠΈΠ· самых популярных Ρ„Ρ€Π΅ΠΉΠΌΠ²ΠΎΡ€ΠΊΠΎΠ² для Ρ„Ρ€ΠΎΠ½Ρ‚Π΅Π½Π΄Π°, Π° Server Actions Π²ΠΊΠ»ΡŽΡ‡Π΅Π½Ρ‹ ΠΏΠΎ ΡƒΠΌΠΎΠ»Ρ‡Π°Π½ΠΈΡŽ начиная с 14-ΠΉ вСрсии. Если Π²Ρ‹ Π΄Π΅ΠΏΠ»ΠΎΠΈΡ‚Π΅ Next.js Π² ΠΊΠΎΠ½Ρ‚Π΅ΠΉΠ½Π΅Ρ€Π°Ρ…, эта ΡΡ‚Π°Ρ‚ΡŒΡ ΠΏΠΎΠΊΠ°ΠΆΠ΅Ρ‚, ΠΊΠ°ΠΊ выглядит полная Ρ†Π΅ΠΏΠΎΡ‡ΠΊΠ° ΠΎΡ‚ RCE Π΄ΠΎ Π²Ρ‹Ρ…ΠΎΠ΄Π° Π½Π° хост, ΠΈ Π½Π° ΠΊΠ°ΠΊΠΎΠΌ этапС WAF ΠΌΠΎΠΆΠ΅Ρ‚ Π΅Π΅ ΠΎΡΡ‚Π°Π½ΠΎΠ²ΠΈΡ‚ΡŒ.

    habr.com/ru/companies/k2tech/a

    #cve202555182 #nextjs #server_actions #waf #pt_cloud_application_firewall #rce #reverse_shell #ΠΏΠΎΠ±Π΅Π³_ΠΈΠ·_ΠΊΠΎΠ½Ρ‚Π΅ΠΉΠ½Π΅Ρ€Π° #docker

  14. CVE, Shell ΠΈ ΠΏΠΎΠ±Π΅Π³ ΠΈΠ· ΠΊΠΎΠ½Ρ‚Π΅ΠΉΠ½Π΅Ρ€Π°: испытываСм возмоТности PT Cloud Application Firewall

    ΠŸΡ€ΠΈΠ²Π΅Ρ‚, Π₯Π°Π±Ρ€! МСня Π·ΠΎΠ²ΡƒΡ‚ Иван Π§Π΅Π±ΠΎΡ‚Π°Ρ€Π΅Π², ΠΈΠ½ΠΆΠ΅Π½Π΅Ρ€ направлСния Π·Π°Ρ‰ΠΈΡ‚Ρ‹ ΠΏΡ€ΠΈΠ»ΠΎΠΆΠ΅Π½ΠΈΠΉ Π² К2 ΠšΠΈΠ±Π΅Ρ€Π±Π΅Π·ΠΎΠΏΠ°ΡΠ½ΠΎΡΡ‚ΡŒ . Π’ ΡΡ‚Π°Ρ‚ΡŒΠ΅ Ρ€Π°ΡΡΠΌΠΎΡ‚Ρ€ΡŽ, ΠΊΠ°ΠΊ PT Cloud Application Firewall (ucWAF) Ρ€Π΅Π°Π³ΠΈΡ€ΡƒΠ΅Ρ‚ Π½Π° ΠΏΠΎΠ±Π΅Π³ ΠΈΠ· ΠΊΠΎΠ½Ρ‚Π΅ΠΉΠ½Π΅Ρ€Π° послС RCE с использованиСм Π½ΠΎΠ²ΠΎΠΉ CVE-2025-55182 . Π­Ρ‚ΠΎ ΡƒΡΠ·Π²ΠΈΠΌΠΎΡΡ‚ΡŒ Π² Next.js, ΠΎΡ‚ΠΊΡ€Ρ‹Π²Π°ΡŽΡ‰Π°Ρ Remote Code Execution Ρ‡Π΅Ρ€Π΅Π· ΠΌΠ΅Ρ…Π°Π½ΠΈΠ·ΠΌ Server Actions. Π― собрал тСстовый стСнд с уязвимым Next.js-ΠΈ ΠΏΡ€ΠΎΠ²Π΅Ρ€ΠΈΠ»: классичСский Π²Π΅Π±-шСлл, Reverse Shell ΠΈ ΠΏΠΎΠ±Π΅Π³ ΠΈΠ· ΠΊΠΎΠ½Ρ‚Π΅ΠΉΠ½Π΅Ρ€Π°. Next.js β€” ΠΎΠ΄ΠΈΠ½ ΠΈΠ· самых популярных Ρ„Ρ€Π΅ΠΉΠΌΠ²ΠΎΡ€ΠΊΠΎΠ² для Ρ„Ρ€ΠΎΠ½Ρ‚Π΅Π½Π΄Π°, Π° Server Actions Π²ΠΊΠ»ΡŽΡ‡Π΅Π½Ρ‹ ΠΏΠΎ ΡƒΠΌΠΎΠ»Ρ‡Π°Π½ΠΈΡŽ начиная с 14-ΠΉ вСрсии. Если Π²Ρ‹ Π΄Π΅ΠΏΠ»ΠΎΠΈΡ‚Π΅ Next.js Π² ΠΊΠΎΠ½Ρ‚Π΅ΠΉΠ½Π΅Ρ€Π°Ρ…, эта ΡΡ‚Π°Ρ‚ΡŒΡ ΠΏΠΎΠΊΠ°ΠΆΠ΅Ρ‚, ΠΊΠ°ΠΊ выглядит полная Ρ†Π΅ΠΏΠΎΡ‡ΠΊΠ° ΠΎΡ‚ RCE Π΄ΠΎ Π²Ρ‹Ρ…ΠΎΠ΄Π° Π½Π° хост, ΠΈ Π½Π° ΠΊΠ°ΠΊΠΎΠΌ этапС WAF ΠΌΠΎΠΆΠ΅Ρ‚ Π΅Π΅ ΠΎΡΡ‚Π°Π½ΠΎΠ²ΠΈΡ‚ΡŒ.

    habr.com/ru/companies/k2tech/a

    #cve202555182 #nextjs #server_actions #waf #pt_cloud_application_firewall #rce #reverse_shell #ΠΏΠΎΠ±Π΅Π³_ΠΈΠ·_ΠΊΠΎΠ½Ρ‚Π΅ΠΉΠ½Π΅Ρ€Π° #docker

  15. $148,337 #BugBounty paid by Google to a researcher (@brutecat) who found debug endpoints on Google Cloud allowing to configure privileged workflows leading to full #RCE in Google Cloud production (CVE-2026-2031)
    #CloudSecurity #BugBountyTips
    πŸ‘‡
    brutecat.com/articles/google-c

  16. $148,337 #BugBounty paid by Google to a researcher (@brutecat) who found debug endpoints on Google Cloud allowing to configure privileged workflows leading to full #RCE in Google Cloud production (CVE-2026-2031)
    #CloudSecurity #BugBountyTips
    πŸ‘‡
    brutecat.com/articles/google-c

  17. $148,337 #BugBounty paid by Google to a researcher (@brutecat) who found debug endpoints on Google Cloud allowing to configure privileged workflows leading to full #RCE in Google Cloud production (CVE-2026-2031)
    #CloudSecurity #BugBountyTips
    πŸ‘‡
    brutecat.com/articles/google-c

  18. $148,337 #BugBounty paid by Google to a researcher (@brutecat) who found debug endpoints on Google Cloud allowing to configure privileged workflows leading to full #RCE in Google Cloud production (CVE-2026-2031)
    #CloudSecurity #BugBountyTips
    πŸ‘‡
    brutecat.com/articles/google-c

  19. $148,337 #BugBounty paid by Google to a researcher (@brutecat) who found debug endpoints on Google Cloud allowing to configure privileged workflows leading to full #RCE in Google Cloud production (CVE-2026-2031)
    #CloudSecurity #BugBountyTips
    πŸ‘‡
    brutecat.com/articles/google-c

  20. Android Malware Forces Hidden Premium Service Subscriptions

    Pulse ID: 6a12dc1c3f49b8b35effd5b8
    Pulse Link: otx.alienvault.com/pulse/6a12d
    Pulse Author: cryptocti
    Created: 2026-05-24 11:08:12

    Be advised, this data is unverified and should be considered preliminary. Always do further verification.

    #Android #CyberSecurity #InfoSec #Malware #OTX #OpenThreatExchange #RCE #bot #cryptocti

  21. Android Malware Forces Hidden Premium Service Subscriptions

    Pulse ID: 6a12dc1c3f49b8b35effd5b8
    Pulse Link: otx.alienvault.com/pulse/6a12d
    Pulse Author: cryptocti
    Created: 2026-05-24 11:08:12

    Be advised, this data is unverified and should be considered preliminary. Always do further verification.

    #Android #CyberSecurity #InfoSec #Malware #OTX #OpenThreatExchange #RCE #bot #cryptocti

  22. Android Malware Forces Hidden Premium Service Subscriptions

    Pulse ID: 6a12dc1c3f49b8b35effd5b8
    Pulse Link: otx.alienvault.com/pulse/6a12d
    Pulse Author: cryptocti
    Created: 2026-05-24 11:08:12

    Be advised, this data is unverified and should be considered preliminary. Always do further verification.

    #Android #CyberSecurity #InfoSec #Malware #OTX #OpenThreatExchange #RCE #bot #cryptocti

  23. Android Malware Forces Hidden Premium Service Subscriptions

    Pulse ID: 6a12dc1c3f49b8b35effd5b8
    Pulse Link: otx.alienvault.com/pulse/6a12d
    Pulse Author: cryptocti
    Created: 2026-05-24 11:08:12

    Be advised, this data is unverified and should be considered preliminary. Always do further verification.

    #Android #CyberSecurity #InfoSec #Malware #OTX #OpenThreatExchange #RCE #bot #cryptocti

  24. Android Malware Forces Hidden Premium Service Subscriptions

    Pulse ID: 6a12dc1c3f49b8b35effd5b8
    Pulse Link: otx.alienvault.com/pulse/6a12d
    Pulse Author: cryptocti
    Created: 2026-05-24 11:08:12

    Be advised, this data is unverified and should be considered preliminary. Always do further verification.

    #Android #CyberSecurity #InfoSec #Malware #OTX #OpenThreatExchange #RCE #bot #cryptocti