home.social

#rce โ€” Public Fediverse posts

Live and recent posts from across the Fediverse tagged #rce, aggregated by home.social.

  1. ๐Ÿ“ฐ Microsoft Patches High-Severity SharePoint RCE Vulnerability (CVE-2026-45659)

    ๐Ÿšจ Microsoft patches high-severity RCE flaw (CVE-2026-45659, CVSS 8.8) in SharePoint Server. Authenticated attackers with low privileges can execute code remotely. On-premise admins: Patch now! #SharePoint #CyberSecurity #PatchTuesday #RCE

    ๐ŸŒ cyber[.]netsecops[.]io

    ๐Ÿ”— cyber.netsecops.io/articles/mi

  2. ๐Ÿ“ฐ Microsoft Patches High-Severity SharePoint RCE Vulnerability (CVE-2026-45659)

    ๐Ÿšจ Microsoft patches high-severity RCE flaw (CVE-2026-45659, CVSS 8.8) in SharePoint Server. Authenticated attackers with low privileges can execute code remotely. On-premise admins: Patch now! #SharePoint #CyberSecurity #PatchTuesday #RCE

    ๐ŸŒ cyber[.]netsecops[.]io

    ๐Ÿ”— cyber.netsecops.io/articles/mi

  3. โš ๏ธ Falla in KnowledgeDeliver consente potenziale esecuzione di codice remoto: aggiornare subito e verificare le istanze esposte. #CyberSecurity #RCE

    ๐Ÿ”— tomshw.it/hardware/knowledgede

  4. โš ๏ธ Falla in KnowledgeDeliver consente potenziale esecuzione di codice remoto: aggiornare subito e verificare le istanze esposte. #CyberSecurity #RCE

    ๐Ÿ”— tomshw.it/hardware/knowledgede

  5. โš ๏ธ Falla in KnowledgeDeliver consente potenziale esecuzione di codice remoto: aggiornare subito e verificare le istanze esposte. #CyberSecurity #RCE

    ๐Ÿ”— tomshw.it/hardware/knowledgede

  6. ๐Ÿ“บ peer.adalta.social/w/tr7hhuNs1
    ๐Ÿ”— [๐Ÿ‡ฉ๐Ÿ‡ช๐Ÿ‡บ๐Ÿ‡ธ๐Ÿ‡ซ๐Ÿ‡ท](adalta.info/articles/prstn_rel)
    ๐Ÿ”— [โ„น๏ธ](heise.de/news/Unreal-Engine-6-")

    Epicโ€™s strategic deployment of UE6 hinges on a targeted demonstration, masking critical information regarding its full capabilities and release timeline.

    #entertainment #release #epicgames #spiele #rce

  7. ๐Ÿ“บ peer.adalta.social/w/tr7hhuNs1
    ๐Ÿ”— [๐Ÿ‡ฉ๐Ÿ‡ช๐Ÿ‡บ๐Ÿ‡ธ๐Ÿ‡ซ๐Ÿ‡ท](adalta.info/articles/prstn_rel)
    ๐Ÿ”— [โ„น๏ธ](heise.de/news/Unreal-Engine-6-")

    Epicโ€™s strategic deployment of UE6 hinges on a targeted demonstration, masking critical information regarding its full capabilities and release timeline.

    #entertainment #release #epicgames #spiele #rce

  8. Laravel Lang Compromised with RCE Backdoor Across 700+ Versions

    Community-maintained Laravel Lang packages were compromised with remote code execution backdoors affecting over 700 versions across multiple repositories including laravel-lang/lang, laravel-lang/http-statuses, laravel-lang/attributes, and laravel-lang/actions. The attack involved coordinated rapid tag publishing on May 22-23, 2026, suggesting organization-level credential compromise. A malicious helpers.php file was automatically executed via Composer's autoloader, deploying a sophisticated cross-platform information stealer. The second-stage payload systematically harvested credentials from cloud infrastructure, Kubernetes, CI/CD systems, browsers, password managers, cryptocurrency wallets, VPN clients, and local configurations. Stolen data was encrypted and exfiltrated to a command-and-control server. The backdoor employed advanced evasion techniques including TLS verification bypass, per-host execution markers, and embedded Windows executables to bypass Chrome encryption protections.

    Pulse ID: 6a1187d92cdbfd79095008cd
    Pulse Link: otx.alienvault.com/pulse/6a118
    Pulse Author: AlienVault
    Created: 2026-05-23 10:56:25

    Be advised, this data is unverified and should be considered preliminary. Always do further verification.

    #BackDoor #Browser #Chrome #Cloud #CyberSecurity #Encryption #HTTP #InfoSec #OTX #OpenThreatExchange #PHP #Password #RAT #RCE #RemoteCodeExecution #TLS #VPN #Windows #Word #bot #cryptocurrency #AlienVault

  9. Laravel Lang Compromised with RCE Backdoor Across 700+ Versions

    Community-maintained Laravel Lang packages were compromised with remote code execution backdoors affecting over 700 versions across multiple repositories including laravel-lang/lang, laravel-lang/http-statuses, laravel-lang/attributes, and laravel-lang/actions. The attack involved coordinated rapid tag publishing on May 22-23, 2026, suggesting organization-level credential compromise. A malicious helpers.php file was automatically executed via Composer's autoloader, deploying a sophisticated cross-platform information stealer. The second-stage payload systematically harvested credentials from cloud infrastructure, Kubernetes, CI/CD systems, browsers, password managers, cryptocurrency wallets, VPN clients, and local configurations. Stolen data was encrypted and exfiltrated to a command-and-control server. The backdoor employed advanced evasion techniques including TLS verification bypass, per-host execution markers, and embedded Windows executables to bypass Chrome encryption protections.

    Pulse ID: 6a1187d92cdbfd79095008cd
    Pulse Link: otx.alienvault.com/pulse/6a118
    Pulse Author: AlienVault
    Created: 2026-05-23 10:56:25

    Be advised, this data is unverified and should be considered preliminary. Always do further verification.

    #BackDoor #Browser #Chrome #Cloud #CyberSecurity #Encryption #HTTP #InfoSec #OTX #OpenThreatExchange #PHP #Password #RAT #RCE #RemoteCodeExecution #TLS #VPN #Windows #Word #bot #cryptocurrency #AlienVault

  10. Laravel Lang Compromised with RCE Backdoor Across 700+ Versions

    Community-maintained Laravel Lang packages were compromised with remote code execution backdoors affecting over 700 versions across multiple repositories including laravel-lang/lang, laravel-lang/http-statuses, laravel-lang/attributes, and laravel-lang/actions. The attack involved coordinated rapid tag publishing on May 22-23, 2026, suggesting organization-level credential compromise. A malicious helpers.php file was automatically executed via Composer's autoloader, deploying a sophisticated cross-platform information stealer. The second-stage payload systematically harvested credentials from cloud infrastructure, Kubernetes, CI/CD systems, browsers, password managers, cryptocurrency wallets, VPN clients, and local configurations. Stolen data was encrypted and exfiltrated to a command-and-control server. The backdoor employed advanced evasion techniques including TLS verification bypass, per-host execution markers, and embedded Windows executables to bypass Chrome encryption protections.

    Pulse ID: 6a1187d92cdbfd79095008cd
    Pulse Link: otx.alienvault.com/pulse/6a118
    Pulse Author: AlienVault
    Created: 2026-05-23 10:56:25

    Be advised, this data is unverified and should be considered preliminary. Always do further verification.

    #BackDoor #Browser #Chrome #Cloud #CyberSecurity #Encryption #HTTP #InfoSec #OTX #OpenThreatExchange #PHP #Password #RAT #RCE #RemoteCodeExecution #TLS #VPN #Windows #Word #bot #cryptocurrency #AlienVault

  11. Laravel Lang Compromised with RCE Backdoor Across 700+ Versions

    Community-maintained Laravel Lang packages were compromised with remote code execution backdoors affecting over 700 versions across multiple repositories including laravel-lang/lang, laravel-lang/http-statuses, laravel-lang/attributes, and laravel-lang/actions. The attack involved coordinated rapid tag publishing on May 22-23, 2026, suggesting organization-level credential compromise. A malicious helpers.php file was automatically executed via Composer's autoloader, deploying a sophisticated cross-platform information stealer. The second-stage payload systematically harvested credentials from cloud infrastructure, Kubernetes, CI/CD systems, browsers, password managers, cryptocurrency wallets, VPN clients, and local configurations. Stolen data was encrypted and exfiltrated to a command-and-control server. The backdoor employed advanced evasion techniques including TLS verification bypass, per-host execution markers, and embedded Windows executables to bypass Chrome encryption protections.

    Pulse ID: 6a1187d92cdbfd79095008cd
    Pulse Link: otx.alienvault.com/pulse/6a118
    Pulse Author: AlienVault
    Created: 2026-05-23 10:56:25

    Be advised, this data is unverified and should be considered preliminary. Always do further verification.

    #BackDoor #Browser #Chrome #Cloud #CyberSecurity #Encryption #HTTP #InfoSec #OTX #OpenThreatExchange #PHP #Password #RAT #RCE #RemoteCodeExecution #TLS #VPN #Windows #Word #bot #cryptocurrency #AlienVault

  12. Laravel Lang Compromised with RCE Backdoor Across 700+ Versions

    Community-maintained Laravel Lang packages were compromised with remote code execution backdoors affecting over 700 versions across multiple repositories including laravel-lang/lang, laravel-lang/http-statuses, laravel-lang/attributes, and laravel-lang/actions. The attack involved coordinated rapid tag publishing on May 22-23, 2026, suggesting organization-level credential compromise. A malicious helpers.php file was automatically executed via Composer's autoloader, deploying a sophisticated cross-platform information stealer. The second-stage payload systematically harvested credentials from cloud infrastructure, Kubernetes, CI/CD systems, browsers, password managers, cryptocurrency wallets, VPN clients, and local configurations. Stolen data was encrypted and exfiltrated to a command-and-control server. The backdoor employed advanced evasion techniques including TLS verification bypass, per-host execution markers, and embedded Windows executables to bypass Chrome encryption protections.

    Pulse ID: 6a1187d92cdbfd79095008cd
    Pulse Link: otx.alienvault.com/pulse/6a118
    Pulse Author: AlienVault
    Created: 2026-05-23 10:56:25

    Be advised, this data is unverified and should be considered preliminary. Always do further verification.

    #BackDoor #Browser #Chrome #Cloud #CyberSecurity #Encryption #HTTP #InfoSec #OTX #OpenThreatExchange #PHP #Password #RAT #RCE #RemoteCodeExecution #TLS #VPN #Windows #Word #bot #cryptocurrency #AlienVault

  13. CVE, Shell ะธ ะฟะพะฑะตะณ ะธะท ะบะพะฝั‚ะตะนะฝะตั€ะฐ: ะธัะฟั‹ั‚ั‹ะฒะฐะตะผ ะฒะพะทะผะพะถะฝะพัั‚ะธ PT Cloud Application Firewall

    ะŸั€ะธะฒะตั‚, ะฅะฐะฑั€! ะœะตะฝั ะทะพะฒัƒั‚ ะ˜ะฒะฐะฝ ะงะตะฑะพั‚ะฐั€ะตะฒ, ะธะฝะถะตะฝะตั€ ะฝะฐะฟั€ะฐะฒะปะตะฝะธั ะทะฐั‰ะธั‚ั‹ ะฟั€ะธะปะพะถะตะฝะธะน ะฒ ะš2 ะšะธะฑะตั€ะฑะตะทะพะฟะฐัะฝะพัั‚ัŒ . ะ’ ัั‚ะฐั‚ัŒะต ั€ะฐััะผะพั‚ั€ัŽ, ะบะฐะบ PT Cloud Application Firewall (ucWAF) ั€ะตะฐะณะธั€ัƒะตั‚ ะฝะฐ ะฟะพะฑะตะณ ะธะท ะบะพะฝั‚ะตะนะฝะตั€ะฐ ะฟะพัะปะต RCE ั ะธัะฟะพะปัŒะทะพะฒะฐะฝะธะตะผ ะฝะพะฒะพะน CVE-2025-55182 . ะญั‚ะพ ัƒัะทะฒะธะผะพัั‚ัŒ ะฒ Next.js, ะพั‚ะบั€ั‹ะฒะฐัŽั‰ะฐั Remote Code Execution ั‡ะตั€ะตะท ะผะตั…ะฐะฝะธะทะผ Server Actions. ะฏ ัะพะฑั€ะฐะป ั‚ะตัั‚ะพะฒั‹ะน ัั‚ะตะฝะด ั ัƒัะทะฒะธะผั‹ะผ Next.js-ะธ ะฟั€ะพะฒะตั€ะธะป: ะบะปะฐััะธั‡ะตัะบะธะน ะฒะตะฑ-ัˆะตะปะป, Reverse Shell ะธ ะฟะพะฑะตะณ ะธะท ะบะพะฝั‚ะตะนะฝะตั€ะฐ. Next.js โ€” ะพะดะธะฝ ะธะท ัะฐะผั‹ั… ะฟะพะฟัƒะปัั€ะฝั‹ั… ั„ั€ะตะนะผะฒะพั€ะบะพะฒ ะดะปั ั„ั€ะพะฝั‚ะตะฝะดะฐ, ะฐ Server Actions ะฒะบะปัŽั‡ะตะฝั‹ ะฟะพ ัƒะผะพะปั‡ะฐะฝะธัŽ ะฝะฐั‡ะธะฝะฐั ั 14-ะน ะฒะตั€ัะธะธ. ะ•ัะปะธ ะฒั‹ ะดะตะฟะปะพะธั‚ะต Next.js ะฒ ะบะพะฝั‚ะตะนะฝะตั€ะฐั…, ัั‚ะฐ ัั‚ะฐั‚ัŒั ะฟะพะบะฐะถะตั‚, ะบะฐะบ ะฒั‹ะณะปัะดะธั‚ ะฟะพะปะฝะฐั ั†ะตะฟะพั‡ะบะฐ ะพั‚ RCE ะดะพ ะฒั‹ั…ะพะดะฐ ะฝะฐ ั…ะพัั‚, ะธ ะฝะฐ ะบะฐะบะพะผ ัั‚ะฐะฟะต WAF ะผะพะถะตั‚ ะตะต ะพัั‚ะฐะฝะพะฒะธั‚ัŒ.

    habr.com/ru/companies/k2tech/a

    #cve202555182 #nextjs #server_actions #waf #pt_cloud_application_firewall #rce #reverse_shell #ะฟะพะฑะตะณ_ะธะท_ะบะพะฝั‚ะตะนะฝะตั€ะฐ #docker

  14. CVE, Shell ะธ ะฟะพะฑะตะณ ะธะท ะบะพะฝั‚ะตะนะฝะตั€ะฐ: ะธัะฟั‹ั‚ั‹ะฒะฐะตะผ ะฒะพะทะผะพะถะฝะพัั‚ะธ PT Cloud Application Firewall

    ะŸั€ะธะฒะตั‚, ะฅะฐะฑั€! ะœะตะฝั ะทะพะฒัƒั‚ ะ˜ะฒะฐะฝ ะงะตะฑะพั‚ะฐั€ะตะฒ, ะธะฝะถะตะฝะตั€ ะฝะฐะฟั€ะฐะฒะปะตะฝะธั ะทะฐั‰ะธั‚ั‹ ะฟั€ะธะปะพะถะตะฝะธะน ะฒ ะš2 ะšะธะฑะตั€ะฑะตะทะพะฟะฐัะฝะพัั‚ัŒ . ะ’ ัั‚ะฐั‚ัŒะต ั€ะฐััะผะพั‚ั€ัŽ, ะบะฐะบ PT Cloud Application Firewall (ucWAF) ั€ะตะฐะณะธั€ัƒะตั‚ ะฝะฐ ะฟะพะฑะตะณ ะธะท ะบะพะฝั‚ะตะนะฝะตั€ะฐ ะฟะพัะปะต RCE ั ะธัะฟะพะปัŒะทะพะฒะฐะฝะธะตะผ ะฝะพะฒะพะน CVE-2025-55182 . ะญั‚ะพ ัƒัะทะฒะธะผะพัั‚ัŒ ะฒ Next.js, ะพั‚ะบั€ั‹ะฒะฐัŽั‰ะฐั Remote Code Execution ั‡ะตั€ะตะท ะผะตั…ะฐะฝะธะทะผ Server Actions. ะฏ ัะพะฑั€ะฐะป ั‚ะตัั‚ะพะฒั‹ะน ัั‚ะตะฝะด ั ัƒัะทะฒะธะผั‹ะผ Next.js-ะธ ะฟั€ะพะฒะตั€ะธะป: ะบะปะฐััะธั‡ะตัะบะธะน ะฒะตะฑ-ัˆะตะปะป, Reverse Shell ะธ ะฟะพะฑะตะณ ะธะท ะบะพะฝั‚ะตะนะฝะตั€ะฐ. Next.js โ€” ะพะดะธะฝ ะธะท ัะฐะผั‹ั… ะฟะพะฟัƒะปัั€ะฝั‹ั… ั„ั€ะตะนะผะฒะพั€ะบะพะฒ ะดะปั ั„ั€ะพะฝั‚ะตะฝะดะฐ, ะฐ Server Actions ะฒะบะปัŽั‡ะตะฝั‹ ะฟะพ ัƒะผะพะปั‡ะฐะฝะธัŽ ะฝะฐั‡ะธะฝะฐั ั 14-ะน ะฒะตั€ัะธะธ. ะ•ัะปะธ ะฒั‹ ะดะตะฟะปะพะธั‚ะต Next.js ะฒ ะบะพะฝั‚ะตะนะฝะตั€ะฐั…, ัั‚ะฐ ัั‚ะฐั‚ัŒั ะฟะพะบะฐะถะตั‚, ะบะฐะบ ะฒั‹ะณะปัะดะธั‚ ะฟะพะปะฝะฐั ั†ะตะฟะพั‡ะบะฐ ะพั‚ RCE ะดะพ ะฒั‹ั…ะพะดะฐ ะฝะฐ ั…ะพัั‚, ะธ ะฝะฐ ะบะฐะบะพะผ ัั‚ะฐะฟะต WAF ะผะพะถะตั‚ ะตะต ะพัั‚ะฐะฝะพะฒะธั‚ัŒ.

    habr.com/ru/companies/k2tech/a

    #cve202555182 #nextjs #server_actions #waf #pt_cloud_application_firewall #rce #reverse_shell #ะฟะพะฑะตะณ_ะธะท_ะบะพะฝั‚ะตะนะฝะตั€ะฐ #docker

  15. CVE, Shell ะธ ะฟะพะฑะตะณ ะธะท ะบะพะฝั‚ะตะนะฝะตั€ะฐ: ะธัะฟั‹ั‚ั‹ะฒะฐะตะผ ะฒะพะทะผะพะถะฝะพัั‚ะธ PT Cloud Application Firewall

    ะŸั€ะธะฒะตั‚, ะฅะฐะฑั€! ะœะตะฝั ะทะพะฒัƒั‚ ะ˜ะฒะฐะฝ ะงะตะฑะพั‚ะฐั€ะตะฒ, ะธะฝะถะตะฝะตั€ ะฝะฐะฟั€ะฐะฒะปะตะฝะธั ะทะฐั‰ะธั‚ั‹ ะฟั€ะธะปะพะถะตะฝะธะน ะฒ ะš2 ะšะธะฑะตั€ะฑะตะทะพะฟะฐัะฝะพัั‚ัŒ . ะ’ ัั‚ะฐั‚ัŒะต ั€ะฐััะผะพั‚ั€ัŽ, ะบะฐะบ PT Cloud Application Firewall (ucWAF) ั€ะตะฐะณะธั€ัƒะตั‚ ะฝะฐ ะฟะพะฑะตะณ ะธะท ะบะพะฝั‚ะตะนะฝะตั€ะฐ ะฟะพัะปะต RCE ั ะธัะฟะพะปัŒะทะพะฒะฐะฝะธะตะผ ะฝะพะฒะพะน CVE-2025-55182 . ะญั‚ะพ ัƒัะทะฒะธะผะพัั‚ัŒ ะฒ Next.js, ะพั‚ะบั€ั‹ะฒะฐัŽั‰ะฐั Remote Code Execution ั‡ะตั€ะตะท ะผะตั…ะฐะฝะธะทะผ Server Actions. ะฏ ัะพะฑั€ะฐะป ั‚ะตัั‚ะพะฒั‹ะน ัั‚ะตะฝะด ั ัƒัะทะฒะธะผั‹ะผ Next.js-ะธ ะฟั€ะพะฒะตั€ะธะป: ะบะปะฐััะธั‡ะตัะบะธะน ะฒะตะฑ-ัˆะตะปะป, Reverse Shell ะธ ะฟะพะฑะตะณ ะธะท ะบะพะฝั‚ะตะนะฝะตั€ะฐ. Next.js โ€” ะพะดะธะฝ ะธะท ัะฐะผั‹ั… ะฟะพะฟัƒะปัั€ะฝั‹ั… ั„ั€ะตะนะผะฒะพั€ะบะพะฒ ะดะปั ั„ั€ะพะฝั‚ะตะฝะดะฐ, ะฐ Server Actions ะฒะบะปัŽั‡ะตะฝั‹ ะฟะพ ัƒะผะพะปั‡ะฐะฝะธัŽ ะฝะฐั‡ะธะฝะฐั ั 14-ะน ะฒะตั€ัะธะธ. ะ•ัะปะธ ะฒั‹ ะดะตะฟะปะพะธั‚ะต Next.js ะฒ ะบะพะฝั‚ะตะนะฝะตั€ะฐั…, ัั‚ะฐ ัั‚ะฐั‚ัŒั ะฟะพะบะฐะถะตั‚, ะบะฐะบ ะฒั‹ะณะปัะดะธั‚ ะฟะพะปะฝะฐั ั†ะตะฟะพั‡ะบะฐ ะพั‚ RCE ะดะพ ะฒั‹ั…ะพะดะฐ ะฝะฐ ั…ะพัั‚, ะธ ะฝะฐ ะบะฐะบะพะผ ัั‚ะฐะฟะต WAF ะผะพะถะตั‚ ะตะต ะพัั‚ะฐะฝะพะฒะธั‚ัŒ.

    habr.com/ru/companies/k2tech/a

    #cve202555182 #nextjs #server_actions #waf #pt_cloud_application_firewall #rce #reverse_shell #ะฟะพะฑะตะณ_ะธะท_ะบะพะฝั‚ะตะนะฝะตั€ะฐ #docker

  16. CVE, Shell ะธ ะฟะพะฑะตะณ ะธะท ะบะพะฝั‚ะตะนะฝะตั€ะฐ: ะธัะฟั‹ั‚ั‹ะฒะฐะตะผ ะฒะพะทะผะพะถะฝะพัั‚ะธ PT Cloud Application Firewall

    ะŸั€ะธะฒะตั‚, ะฅะฐะฑั€! ะœะตะฝั ะทะพะฒัƒั‚ ะ˜ะฒะฐะฝ ะงะตะฑะพั‚ะฐั€ะตะฒ, ะธะฝะถะตะฝะตั€ ะฝะฐะฟั€ะฐะฒะปะตะฝะธั ะทะฐั‰ะธั‚ั‹ ะฟั€ะธะปะพะถะตะฝะธะน ะฒ ะš2 ะšะธะฑะตั€ะฑะตะทะพะฟะฐัะฝะพัั‚ัŒ . ะ’ ัั‚ะฐั‚ัŒะต ั€ะฐััะผะพั‚ั€ัŽ, ะบะฐะบ PT Cloud Application Firewall (ucWAF) ั€ะตะฐะณะธั€ัƒะตั‚ ะฝะฐ ะฟะพะฑะตะณ ะธะท ะบะพะฝั‚ะตะนะฝะตั€ะฐ ะฟะพัะปะต RCE ั ะธัะฟะพะปัŒะทะพะฒะฐะฝะธะตะผ ะฝะพะฒะพะน CVE-2025-55182 . ะญั‚ะพ ัƒัะทะฒะธะผะพัั‚ัŒ ะฒ Next.js, ะพั‚ะบั€ั‹ะฒะฐัŽั‰ะฐั Remote Code Execution ั‡ะตั€ะตะท ะผะตั…ะฐะฝะธะทะผ Server Actions. ะฏ ัะพะฑั€ะฐะป ั‚ะตัั‚ะพะฒั‹ะน ัั‚ะตะฝะด ั ัƒัะทะฒะธะผั‹ะผ Next.js-ะธ ะฟั€ะพะฒะตั€ะธะป: ะบะปะฐััะธั‡ะตัะบะธะน ะฒะตะฑ-ัˆะตะปะป, Reverse Shell ะธ ะฟะพะฑะตะณ ะธะท ะบะพะฝั‚ะตะนะฝะตั€ะฐ. Next.js โ€” ะพะดะธะฝ ะธะท ัะฐะผั‹ั… ะฟะพะฟัƒะปัั€ะฝั‹ั… ั„ั€ะตะนะผะฒะพั€ะบะพะฒ ะดะปั ั„ั€ะพะฝั‚ะตะฝะดะฐ, ะฐ Server Actions ะฒะบะปัŽั‡ะตะฝั‹ ะฟะพ ัƒะผะพะปั‡ะฐะฝะธัŽ ะฝะฐั‡ะธะฝะฐั ั 14-ะน ะฒะตั€ัะธะธ. ะ•ัะปะธ ะฒั‹ ะดะตะฟะปะพะธั‚ะต Next.js ะฒ ะบะพะฝั‚ะตะนะฝะตั€ะฐั…, ัั‚ะฐ ัั‚ะฐั‚ัŒั ะฟะพะบะฐะถะตั‚, ะบะฐะบ ะฒั‹ะณะปัะดะธั‚ ะฟะพะปะฝะฐั ั†ะตะฟะพั‡ะบะฐ ะพั‚ RCE ะดะพ ะฒั‹ั…ะพะดะฐ ะฝะฐ ั…ะพัั‚, ะธ ะฝะฐ ะบะฐะบะพะผ ัั‚ะฐะฟะต WAF ะผะพะถะตั‚ ะตะต ะพัั‚ะฐะฝะพะฒะธั‚ัŒ.

    habr.com/ru/companies/k2tech/a

    #cve202555182 #nextjs #server_actions #waf #pt_cloud_application_firewall #rce #reverse_shell #ะฟะพะฑะตะณ_ะธะท_ะบะพะฝั‚ะตะนะฝะตั€ะฐ #docker

  17. ๐Ÿ“บ peer.adalta.social/w/f5CJYsk2S
    ๐Ÿ”— [๐Ÿ‡ฉ๐Ÿ‡ช๐Ÿ‡บ๐Ÿ‡ธ๐Ÿ‡ซ๐Ÿ‡ท](adalta.info/articles/prstn_law)
    ๐Ÿ”— [โ„น๏ธ](copblaster.com/cop/18101/malco")

    The systemic failures within Oklahoma law enforcement demand immediate scrutiny and proactive reform strategies.

    #law #lawenforcement #rce #policeaccountability #decertified

  18. ๐Ÿ“บ peer.adalta.social/w/f5CJYsk2S
    ๐Ÿ”— [๐Ÿ‡ฉ๐Ÿ‡ช๐Ÿ‡บ๐Ÿ‡ธ๐Ÿ‡ซ๐Ÿ‡ท](adalta.info/articles/prstn_law)
    ๐Ÿ”— [โ„น๏ธ](copblaster.com/cop/18101/malco")

    The systemic failures within Oklahoma law enforcement demand immediate scrutiny and proactive reform strategies.

    #law #lawenforcement #rce #policeaccountability #decertified

  19. $148,337 #BugBounty paid by Google to a researcher (@brutecat) who found debug endpoints on Google Cloud allowing to configure privileged workflows leading to full #RCE in Google Cloud production (CVE-2026-2031)
    #CloudSecurity #BugBountyTips
    ๐Ÿ‘‡
    brutecat.com/articles/google-c

  20. $148,337 #BugBounty paid by Google to a researcher (@brutecat) who found debug endpoints on Google Cloud allowing to configure privileged workflows leading to full #RCE in Google Cloud production (CVE-2026-2031)
    #CloudSecurity #BugBountyTips
    ๐Ÿ‘‡
    brutecat.com/articles/google-c

  21. $148,337 #BugBounty paid by Google to a researcher (@brutecat) who found debug endpoints on Google Cloud allowing to configure privileged workflows leading to full #RCE in Google Cloud production (CVE-2026-2031)
    #CloudSecurity #BugBountyTips
    ๐Ÿ‘‡
    brutecat.com/articles/google-c

  22. $148,337 #BugBounty paid by Google to a researcher (@brutecat) who found debug endpoints on Google Cloud allowing to configure privileged workflows leading to full #RCE in Google Cloud production (CVE-2026-2031)
    #CloudSecurity #BugBountyTips
    ๐Ÿ‘‡
    brutecat.com/articles/google-c

  23. $148,337 #BugBounty paid by Google to a researcher (@brutecat) who found debug endpoints on Google Cloud allowing to configure privileged workflows leading to full #RCE in Google Cloud production (CVE-2026-2031)
    #CloudSecurity #BugBountyTips
    ๐Ÿ‘‡
    brutecat.com/articles/google-c

  24. Android Malware Forces Hidden Premium Service Subscriptions

    Pulse ID: 6a12dc1c3f49b8b35effd5b8
    Pulse Link: otx.alienvault.com/pulse/6a12d
    Pulse Author: cryptocti
    Created: 2026-05-24 11:08:12

    Be advised, this data is unverified and should be considered preliminary. Always do further verification.

    #Android #CyberSecurity #InfoSec #Malware #OTX #OpenThreatExchange #RCE #bot #cryptocti

  25. Android Malware Forces Hidden Premium Service Subscriptions

    Pulse ID: 6a12dc1c3f49b8b35effd5b8
    Pulse Link: otx.alienvault.com/pulse/6a12d
    Pulse Author: cryptocti
    Created: 2026-05-24 11:08:12

    Be advised, this data is unverified and should be considered preliminary. Always do further verification.

    #Android #CyberSecurity #InfoSec #Malware #OTX #OpenThreatExchange #RCE #bot #cryptocti

  26. Android Malware Forces Hidden Premium Service Subscriptions

    Pulse ID: 6a12dc1c3f49b8b35effd5b8
    Pulse Link: otx.alienvault.com/pulse/6a12d
    Pulse Author: cryptocti
    Created: 2026-05-24 11:08:12

    Be advised, this data is unverified and should be considered preliminary. Always do further verification.

    #Android #CyberSecurity #InfoSec #Malware #OTX #OpenThreatExchange #RCE #bot #cryptocti

  27. Android Malware Forces Hidden Premium Service Subscriptions

    Pulse ID: 6a12dc1c3f49b8b35effd5b8
    Pulse Link: otx.alienvault.com/pulse/6a12d
    Pulse Author: cryptocti
    Created: 2026-05-24 11:08:12

    Be advised, this data is unverified and should be considered preliminary. Always do further verification.

    #Android #CyberSecurity #InfoSec #Malware #OTX #OpenThreatExchange #RCE #bot #cryptocti

  28. Android Malware Forces Hidden Premium Service Subscriptions

    Pulse ID: 6a12dc1c3f49b8b35effd5b8
    Pulse Link: otx.alienvault.com/pulse/6a12d
    Pulse Author: cryptocti
    Created: 2026-05-24 11:08:12

    Be advised, this data is unverified and should be considered preliminary. Always do further verification.

    #Android #CyberSecurity #InfoSec #Malware #OTX #OpenThreatExchange #RCE #bot #cryptocti