
<?xml version="1.0" encoding="UTF-8"?>
<rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom">
<channel>
  <title>appsec.fyi — New Resources</title>
  <link>https://appsec.fyi</link>
  <description>Curated application security resources — XSS, SQLi, SSRF, IDOR, RCE, and more.</description>
  <language>en-us</language>
  <atom:link href="https://appsec.fyi/feed.xml" rel="self" type="application/rss+xml"/>
  <lastBuildDate>Wed, 08 Jul 2026 04:08:05 +0000</lastBuildDate>
  <managingEditor>carl@chs.us (Carl Sampson)</managingEditor>
  <webMaster>carl@chs.us (Carl Sampson)</webMaster>
  <item>
    <title>New Gaslight macOS Malware Uses Prompt Injection to Disrupt AI-Assisted Analysis</title>
    <link>https://thehackernews.com/2026/06/new-gaslight-macos-malware-uses-prompt.html</link>
    <guid isPermaLink="true">https://thehackernews.com/2026/06/new-gaslight-macos-malware-uses-prompt.html</guid>
    <description>A newly identified macOS malware named &quot;Gaslight&quot; employs prompt injection techniques to interfere with AI-assisted analysis tools. This malware targets macOS users and leverages vulnerabilities in how AI models process prompts to execute malicious actions or alter the analysis results. The goal appears to be to mislead or disrupt security tools and researchers attempting to understand or combat the malware&#x27;s behavior. Specific payout amounts are not mentioned.</description>
    <category>AI Security</category>
    <category domain="difficulty">news</category>
    <pubDate>Wed, 08 Jul 2026 02:40:51 +0000</pubDate>
    <source url="https://appsec.fyi/ai.html">AI Security — appsec.fyi</source>
  </item>
  <item>
    <title>Active Exploitation Alert: Critical CVE-2024-12356 Authentication Bypass and RCE in BeyondTrust Remote Support and PRA</title>
    <link>https://www.rescana.com/post/active-exploitation-alert-critical-cve-2024-12356-authentication-bypass-and-rce-in-beyondtrust-remote-support-and-pra</link>
    <guid isPermaLink="true">https://www.rescana.com/post/active-exploitation-alert-critical-cve-2024-12356-authentication-bypass-and-rce-in-beyondtrust-remote-support-and-pra</guid>
    <description>BeyondTrust Remote Support and Privilege Management for Remote Access (PRA) are facing active exploitation due to critical vulnerability CVE-2024-12356. This flaw enables authentication bypass and Remote Code Execution (RCE), posing a significant security risk. Organizations using these products are urged to implement immediate remediation measures to protect their systems from potential compromise. Further details and solutions can be found at the provided link.</description>
    <category>RCE</category>
    <category domain="difficulty">news</category>
    <pubDate>Tue, 07 Jul 2026 19:19:32 +0000</pubDate>
    <source url="https://appsec.fyi/rce.html">RCE — appsec.fyi</source>
  </item>
  <item>
    <title>Ubiquiti Disclosed 25 Security Vulnerabilities Including Injection and DoS Flaws</title>
    <link>https://cyberpress.org/ubiquiti-25-security-vulnerabilities/</link>
    <guid isPermaLink="true">https://cyberpress.org/ubiquiti-25-security-vulnerabilities/</guid>
    <description>Ubiquiti has disclosed 25 security vulnerabilities affecting various products, including injection and denial-of-service (DoS) flaws. The specific details and affected products were not elaborated upon in the provided information, beyond the general categories of vulnerabilities. This disclosure highlights potential security risks for users of Ubiquiti devices. No bug bounty payout amounts were mentioned.</description>
    <category>SQLi</category>
    <category domain="difficulty">news</category>
    <pubDate>Tue, 07 Jul 2026 18:41:43 +0000</pubDate>
    <source url="https://appsec.fyi/sqli.html">SQLi — appsec.fyi</source>
  </item>
  <item>
    <title>Critical Vulnerability in GCP Dialogflow Allows Attackers to Inject Malicious Code</title>
    <link>https://cybersecuritynews.com/gcp-dialogflow-vulnerability/</link>
    <guid isPermaLink="true">https://cybersecuritynews.com/gcp-dialogflow-vulnerability/</guid>
    <description>A critical vulnerability has been discovered in Google Cloud Platform&#x27;s Dialogflow that allows attackers to inject malicious code. This flaw could enable unauthorized access and manipulation of sensitive data within applications built on Dialogflow. The exact payout amount for reporting this vulnerability is not specified in the provided content.</description>
    <category>API Security</category>
    <category domain="difficulty">news</category>
    <pubDate>Tue, 07 Jul 2026 17:41:27 +0000</pubDate>
    <source url="https://appsec.fyi/apisec.html">API Security — appsec.fyi</source>
  </item>
  <item>
    <title>Sophos Flags Vect-TeamPCP Cybercriminal Ransomware Alliance</title>
    <link>https://cybermagazine.com/news/sophos-flags-vect-teampcp-cybercriminal-ransomware-alliance</link>
    <guid isPermaLink="true">https://cybermagazine.com/news/sophos-flags-vect-teampcp-cybercriminal-ransomware-alliance</guid>
    <description>Sophos has identified a new ransomware alliance called &quot;Vect-TeamPCP.&quot; This group appears to be a collaboration of cybercriminals, with Vect (likely a ransomware strain) and Team PCP (potentially a ransomware-as-a-service platform) joining forces. This alliance suggests a more organized and sophisticated threat landscape, with increased potential for widespread attacks. Sophos is monitoring this development closely.</description>
    <category>Supply Chain Security</category>
    <category domain="difficulty">news</category>
    <pubDate>Tue, 07 Jul 2026 14:55:47 +0000</pubDate>
    <source url="https://appsec.fyi/supplychain.html">Supply Chain Security — appsec.fyi</source>
  </item>
  <item>
    <title>Beyond Prompt Injection</title>
    <link>https://www.oreilly.com/radar/beyond-prompt-injection</link>
    <guid isPermaLink="true">https://www.oreilly.com/radar/beyond-prompt-injection</guid>
    <description>This article discusses advancements beyond traditional prompt injection attacks on AI models. It highlights the emergence of new vulnerabilities and attack vectors that researchers are actively exploring and developing. The focus is on understanding and mitigating these sophisticated threats to ensure the security and integrity of AI systems. The content suggests that the field is rapidly evolving, with new challenges and solutions constantly emerging.</description>
    <category>AI Security</category>
    <category domain="difficulty">advanced</category>
    <pubDate>Tue, 07 Jul 2026 13:25:32 +0000</pubDate>
    <source url="https://appsec.fyi/ai.html">AI Security — appsec.fyi</source>
  </item>
  <item>
    <title>Attackers exploit critical Adobe ColdFusion vulnerability (CVE-2026-48282)</title>
    <link>https://www.helpnetsecurity.com/2026/07/07/adobe-coldfusion-cve-2026-48282-exploitation-detected/</link>
    <guid isPermaLink="true">https://www.helpnetsecurity.com/2026/07/07/adobe-coldfusion-cve-2026-48282-exploitation-detected/</guid>
    <description>Attackers are actively exploiting a critical vulnerability in Adobe ColdFusion, identified as CVE-2026-48282. This flaw allows for remote code execution, posing a significant security risk to organizations using the affected software. While the provided content does not specify a bug bounty payout, it highlights the immediate danger and the need for prompt patching by users of Adobe ColdFusion. Users should update to the latest versions to mitigate the risks associated with this vulnerability.</description>
    <category>RCE</category>
    <category domain="difficulty">news</category>
    <pubDate>Tue, 07 Jul 2026 12:45:22 +0000</pubDate>
    <source url="https://appsec.fyi/rce.html">RCE — appsec.fyi</source>
  </item>
  <item>
    <title>InfoSec Community: New Writeup Alert! &quot;The HTTP 303 SSRF Hack : From Python HTTP Client Defaults to AWS Credential Exfiltration.&quot; by Alvin Ferdiansyah is now live on IW! Check it out here: #oauth #python #ssrf #bugbountywriteup</title>
    <link>https://x.com/InfoSecComm/status/2074471023752417395</link>
    <guid isPermaLink="true">https://x.com/InfoSecComm/status/2074471023752417395</guid>
    <description>Alvin Ferdiansyah&#x27;s new writeup, &quot;The HTTP 303 SSRF Hack: From Python HTTP Client Defaults to AWS Credential Exfiltration,&quot; is now available. The analysis explores how default Python HTTP client behaviors can lead to SSRF vulnerabilities, ultimately enabling AWS credential exfiltration. This bug bounty writeup is a valuable resource for those interested in OAuth, Python security, and SSRF exploit techniques.</description>
    <category>SSRF</category>
    <category domain="difficulty">intermediate</category>
    <pubDate>Tue, 07 Jul 2026 12:43:47 +0000</pubDate>
    <source url="https://appsec.fyi/ssrf.html">SSRF — appsec.fyi</source>
  </item>
  <item>
    <title>Software transparency becomes cyber-security priority</title>
    <link>https://www.teiss.co.uk/news/software-transparency-becomes-cyber-security-priority-17772</link>
    <guid isPermaLink="true">https://www.teiss.co.uk/news/software-transparency-becomes-cyber-security-priority-17772</guid>
    <description>Software transparency is now a critical cybersecurity priority due to increasing vulnerabilities. The article highlights how understanding a software&#x27;s components, dependencies, and supply chain is essential for identifying and mitigating risks. This proactive approach allows organizations to better defend against sophisticated cyberattacks. The shift towards transparency empowers users and developers to make informed decisions about software security, ultimately strengthening overall digital resilience.</description>
    <category>Supply Chain Security</category>
    <category domain="difficulty">beginner</category>
    <pubDate>Tue, 07 Jul 2026 11:15:43 +0000</pubDate>
    <source url="https://appsec.fyi/supplychain.html">Supply Chain Security — appsec.fyi</source>
  </item>
  <item>
    <title>Suspected China-Aligned Hackers Exploit Roundcube Flaws Against Universities</title>
    <link>https://thehackernews.com/2026/07/suspected-china-aligned-hackers-exploit.html</link>
    <guid isPermaLink="true">https://thehackernews.com/2026/07/suspected-china-aligned-hackers-exploit.html</guid>
    <description>Suspected China-aligned hackers have exploited vulnerabilities in the Roundcube webmail service to target universities. The attackers leveraged these flaws to gain access to sensitive information and potentially disrupt operations. The full scope and impact of these attacks are still under investigation, but the use of Roundcube as an entry point highlights a persistent threat vector for educational institutions.</description>
    <category>RCE</category>
    <category domain="difficulty">news</category>
    <pubDate>Tue, 07 Jul 2026 09:39:04 +0000</pubDate>
    <source url="https://appsec.fyi/rce.html">RCE — appsec.fyi</source>
  </item>
  <item>
    <title>Gemini Live API Flaw Lets Attackers Inject Code Execution Through Unconstrained Tokens</title>
    <link>https://cyberpress.org/gemini-live-api-inject-code-execution/</link>
    <guid isPermaLink="true">https://cyberpress.org/gemini-live-api-inject-code-execution/</guid>
    <description>A critical flaw in the Gemini Live API allowed attackers to achieve code execution by injecting unconstrained tokens. This vulnerability, identified by researchers, could have enabled malicious actors to compromise systems. The specific bounty payout for this discovery is not mentioned in the provided content.</description>
    <category>API Security</category>
    <category domain="difficulty">intermediate</category>
    <pubDate>Tue, 07 Jul 2026 09:21:22 +0000</pubDate>
    <source url="https://appsec.fyi/apisec.html">API Security — appsec.fyi</source>
  </item>
  <item>
    <title>Google Gemini Live API Flaw Allows RCE via Unconstrained Ephemeral Tokens</title>
    <link>https://gbhackers.com/google-gemini-live-api-flaw/</link>
    <guid isPermaLink="true">https://gbhackers.com/google-gemini-live-api-flaw/</guid>
    <description>A critical flaw in the Google Gemini Live API allowed for Remote Code Execution (RCE) by exploiting unconstrained ephemeral tokens. This vulnerability enabled attackers to potentially gain unauthorized access and control over systems utilizing the Gemini Live API. Further details about the exploit and its impact can be found at the provided link.</description>
    <category>RCE</category>
    <category domain="difficulty">advanced</category>
    <pubDate>Tue, 07 Jul 2026 08:54:39 +0000</pubDate>
    <source url="https://appsec.fyi/rce.html">RCE — appsec.fyi</source>
  </item>
  <item>
    <title>PicoCTF Web Exploitation Easy Category Web Challenge [SSTL 1]</title>
    <link>https://infosecwriteups.com/picoctf-web-exploitation-easy-category-web-challenge-sstl-1-1fc109221169</link>
    <guid isPermaLink="true">https://infosecwriteups.com/picoctf-web-exploitation-easy-category-web-challenge-sstl-1-1fc109221169</guid>
    <description>This PicoCTF web challenge, &quot;SSTL 1,&quot; focuses on Server-Side Template Injection (SSTI). Participants must exploit a website that allows users to make announcements. By observing the website&#x27;s response after making announcements, players need to identify and execute SSTI vulnerabilities. The challenge involves understanding how template files function within the web application to achieve the exploitation.</description>
    <category>Server-Side Template Injection (SSTI)</category>
    <category domain="difficulty">beginner</category>
    <pubDate>Tue, 07 Jul 2026 06:00:33 +0000</pubDate>
    <source url="https://appsec.fyi/ssti.html">Server-Side Template Injection (SSTI) — appsec.fyi</source>
  </item>
  <item>
    <title>How I Found a Data Deletion Bypass via Subdomain Synchronization</title>
    <link>https://infosecwriteups.com/how-i-found-a-data-deletion-bypass-via-subdomain-synchronization-7f5a43079983</link>
    <guid isPermaLink="true">https://infosecwriteups.com/how-i-found-a-data-deletion-bypass-via-subdomain-synchronization-7f5a43079983</guid>
    <description>A security researcher discovered a critical business logic vulnerability allowing Moderator roles to delete entire organizational groups, a function reserved for Admins/Owners. This bypass was found shortly after lunch and yielded a payout, enabling the researcher to purchase premium items. The flaw exploited a weakness in subdomain synchronization, granting unauthorized deletion capabilities through group settings.</description>
    <category>Bug Bounty</category>
    <category domain="difficulty">intermediate</category>
    <pubDate>Tue, 07 Jul 2026 06:00:33 +0000</pubDate>
    <source url="https://appsec.fyi/bugbounty.html">Bug Bounty — appsec.fyi</source>
  </item>
  <item>
    <title>How I Found a Critical OAuth Misconfiguration That Led to Account Takeover</title>
    <link>https://infosecwriteups.com/how-i-found-a-critical-oauth-misconfiguration-that-led-to-account-takeover-abfec43eaea6</link>
    <guid isPermaLink="true">https://infosecwriteups.com/how-i-found-a-critical-oauth-misconfiguration-that-led-to-account-takeover-abfec43eaea6</guid>
    <description>A bug bounty hunter and their teammate discovered a critical account takeover vulnerability on a self-hosted platform. The vulnerability stemmed from a chain of OAuth misconfigurations, including open client registration and PKCE issues. Individually, these flaws might seem minor, but when combined, they allowed for full account takeover of authenticated users.</description>
    <category>Bug Bounty</category>
    <category domain="difficulty">intermediate</category>
    <pubDate>Tue, 07 Jul 2026 06:00:32 +0000</pubDate>
    <source url="https://appsec.fyi/bugbounty.html">Bug Bounty — appsec.fyi</source>
  </item>
  <item>
    <title>RCE via Gemini Live AI Voice Session Misconfiguration.</title>
    <link>https://infosecwriteups.com/rce-via-gemini-live-ai-voice-session-misconfiguration-e0648805a055</link>
    <guid isPermaLink="true">https://infosecwriteups.com/rce-via-gemini-live-ai-voice-session-misconfiguration-e0648805a055</guid>
    <description>Researchers discovered a Remote Code Execution (RCE) vulnerability in Gemini Live AI voice sessions. The flaw stems from a misconfiguration allowing injection of client-controlled setup frames via unconstrained ephemeral tokens. This means a malicious actor could potentially compromise the real-time AI voice features integrated into web applications that utilize the Gemini Live API. No bounty amount was specified in the provided content.</description>
    <category>RCE</category>
    <category domain="difficulty">advanced</category>
    <pubDate>Tue, 07 Jul 2026 06:00:32 +0000</pubDate>
    <source url="https://appsec.fyi/rce.html">RCE — appsec.fyi</source>
  </item>
  <item>
    <title>The File That Answered Back — XXE Hidden in Cell A2</title>
    <link>https://infosecwriteups.com/the-file-that-answered-back-xxe-hidden-in-cell-a2-20dbb8161dd8</link>
    <guid isPermaLink="true">https://infosecwriteups.com/the-file-that-answered-back-xxe-hidden-in-cell-a2-20dbb8161dd8</guid>
    <description>This writeup details a XXE vulnerability discovered within an XLSX file upload. Despite the commonality of XXE, researchers often overlook it in spreadsheets. However, XLSX files are essentially ZIP archives containing XML, and the parser can be exploited. The vulnerability was found behind an Imperva WAF, a prevalent enterprise security measure. The content doesn&#x27;t state a specific bug bounty payout amount.</description>
    <category>XXE</category>
    <category domain="difficulty">intermediate</category>
    <pubDate>Tue, 07 Jul 2026 06:00:32 +0000</pubDate>
    <source url="https://appsec.fyi/xxe.html">XXE — appsec.fyi</source>
  </item>
  <item>
    <title>Mass Assignment and the Identity Drift: From Profile Edit to Insurance Takeover</title>
    <link>https://infosecwriteups.com/mass-assignment-and-the-identity-drift-from-profile-edit-to-insurance-takeover-5eb2be4c1f8e</link>
    <guid isPermaLink="true">https://infosecwriteups.com/mass-assignment-and-the-identity-drift-from-profile-edit-to-insurance-takeover-5eb2be4c1f8e</guid>
    <description>A vulnerability called Mass Assignment allows attackers to alter critical user data, such as name, date of birth, and government ID, without re-verification or customer support intervention. The eKYC status remains erroneously verified, enabling fraudulent activity. This occurs when applications update internal objects directly from user-controlled requests without validating permissible fields. The article highlights how this can lead to identity drift, potentially impacting sensitive systems like insurance accounts.</description>
    <category>Bug Bounty</category>
    <category domain="difficulty">intermediate</category>
    <pubDate>Tue, 07 Jul 2026 06:00:32 +0000</pubDate>
    <source url="https://appsec.fyi/bugbounty.html">Bug Bounty — appsec.fyi</source>
  </item>
  <item>
    <title>Mastering curl Commands Bug Bounty Hunter&#x27;s Guide</title>
    <link>https://infosecwriteups.com/mastering-curl-commands-bug-bounty-hunters-guide-57037fdc9714</link>
    <guid isPermaLink="true">https://infosecwriteups.com/mastering-curl-commands-bug-bounty-hunters-guide-57037fdc9714</guid>
    <description>This guide explores how bug bounty hunters can leverage `curl` beyond basic usage. While tools like Burp Suite are popular, `curl` offers powerful capabilities that are often overlooked. Mastering `curl` commands can enhance efficiency and effectiveness in bug bounty hunting, making it an essential tool for every hunter&#x27;s arsenal.</description>
    <category>Bug Bounty</category>
    <category domain="difficulty">intermediate</category>
    <pubDate>Tue, 07 Jul 2026 06:00:32 +0000</pubDate>
    <source url="https://appsec.fyi/bugbounty.html">Bug Bounty — appsec.fyi</source>
  </item>
  <item>
    <title>Predicting MongoDB ObjectId() continuously in Rocket.Chat</title>
    <link>https://aikido.dev/blog/predicting-mongodb-objectid-rocket-chat</link>
    <guid isPermaLink="true">https://aikido.dev/blog/predicting-mongodb-objectid-rocket-chat</guid>
    <description>Aikido&#x27;s AI pentester discovered a file-access vulnerability in Rocket.Chat by exploiting weak randomness in MongoDB&#x27;s ObjectId(). This flaw allows for continuous prediction of ObjectId() values, which can then be used to gain unauthorized file access within the application. The vulnerability falls under the &quot;Vulnerabilities &amp; Threats&quot; category. No bounty payout amount was specified.</description>
    <category>IDOR</category>
    <category domain="difficulty">advanced</category>
    <pubDate>Tue, 07 Jul 2026 06:00:22 +0000</pubDate>
    <source url="https://appsec.fyi/idor.html">IDOR — appsec.fyi</source>
  </item>
  <item>
    <title>Microsoft Edge High-Severity Vulnerability Allows Remote Code Execution</title>
    <link>https://gbhackers.com/microsoft-edge-high-severity-vulnerability/</link>
    <guid isPermaLink="true">https://gbhackers.com/microsoft-edge-high-severity-vulnerability/</guid>
    <description>Microsoft has addressed a high-severity vulnerability in Microsoft Edge that could allow for remote code execution. This flaw, if exploited, enables attackers to run malicious code on a user&#x27;s system without their knowledge or consent. While the severity is highlighted, no specific bug bounty payout amount is mentioned in the provided content. Users are advised to update their Edge browsers promptly to patch this security risk.</description>
    <category>RCE</category>
    <category domain="difficulty">news</category>
    <pubDate>Tue, 07 Jul 2026 05:59:44 +0000</pubDate>
    <source url="https://appsec.fyi/rce.html">RCE — appsec.fyi</source>
  </item>
  <item>
    <title>Microsoft Edge Use-After-Free Flaw Lets Attackers Execute Code Remotely</title>
    <link>https://cyberpress.org/microsoft-edge-use-after-free-flaw/</link>
    <guid isPermaLink="true">https://cyberpress.org/microsoft-edge-use-after-free-flaw/</guid>
    <description>A critical use-after-free vulnerability in Microsoft Edge has been disclosed, allowing attackers to remotely execute code on vulnerable systems. This flaw could potentially lead to complete system compromise. While a specific payout amount for reporting this bug is not mentioned in the provided content, the severity of the vulnerability highlights the ongoing importance of security research and patching for web browsers. Users are advised to ensure their Microsoft Edge browser is updated to the latest version to mitigate this risk.</description>
    <category>RCE</category>
    <category domain="difficulty">advanced</category>
    <pubDate>Tue, 07 Jul 2026 05:19:37 +0000</pubDate>
    <source url="https://appsec.fyi/rce.html">RCE — appsec.fyi</source>
  </item>
  <item>
    <title>Chasing Zero-Day Vulnerabilities via the Anchore Enterprise API</title>
    <link>https://securityboulevard.com/2026/06/chasing-zero-day-vulnerabilities-via-the-anchore-enterprise-api/</link>
    <guid isPermaLink="true">https://securityboulevard.com/2026/06/chasing-zero-day-vulnerabilities-via-the-anchore-enterprise-api/</guid>
    <description>This content, titled &quot;Chasing Zero-Day Vulnerabilities via the Anchore Enterprise API,&quot; suggests a focus on identifying previously unknown (zero-day) security flaws within the Anchore Enterprise API. The provided link likely leads to a detailed explanation or demonstration of techniques used for this pursuit. The core theme revolves around proactive vulnerability research and the exploitation of a specific API for discovering critical security issues. No bug bounty payout amount is mentioned.</description>
    <category>API Security</category>
    <category domain="difficulty">intermediate</category>
    <pubDate>Tue, 07 Jul 2026 04:46:39 +0000</pubDate>
    <source url="https://appsec.fyi/apisec.html">API Security — appsec.fyi</source>
  </item>
  <item>
    <title>8 Best Agentic AI Security Companies for Prompt Injection &amp; Secret Sprawl Defense</title>
    <link>https://itwire.com/business-it-news/security/8-best-agentic-ai-security-companies-for-prompt-injection-and-secret-sprawl-defense</link>
    <guid isPermaLink="true">https://itwire.com/business-it-news/security/8-best-agentic-ai-security-companies-for-prompt-injection-and-secret-sprawl-defense</guid>
    <description>Library for agentic AI security vendors, this resource spotlights eight companies providing guardrails against prompt injection and secret sprawl, including Entro Security for identity governance and secret scanning, Palo Alto Networks for extending SOC visibility, Trend Micro Vision One with DLP capabilities, and Noma Security offering a control plane with a self-driving red team. The selection process involved mapping the market, applying strict inclusion rules, and scoring vendors on criteria such as prompt-injection defense, data-leak prevention, and real-time detection, prioritizing those proven in live environments.</description>
    <category>AI Security</category>
    <category domain="difficulty">beginner</category>
    <pubDate>Tue, 07 Jul 2026 03:55:46 +0000</pubDate>
    <source url="https://appsec.fyi/ai.html">AI Security — appsec.fyi</source>
  </item>
  <item>
    <title>SharePoint Vulnerability CVE-2026-45659 Exploited [2026]</title>
    <link>https://tech-insider.org/sharepoint-rce-cve-2026-45659/</link>
    <guid isPermaLink="true">https://tech-insider.org/sharepoint-rce-cve-2026-45659/</guid>
    <description>Writeup of CVE-2026-45659, a SharePoint RCE vulnerability, details how a flaw initially assessed as &quot;less likely to be exploited&quot; by Microsoft became a federally mandated fix by CISA within weeks. The deserialization bug requires only &quot;Site Member&quot; privileges and low complexity, making authenticated access a potent attack vector. This &quot;n-day&quot; exploit highlights the danger of unpatched on-premises SharePoint servers, impacting sectors like government and finance, and underscores the urgency of CISA&#x27;s Known Exploited Vulnerabilities catalog.</description>
    <category>RCE</category>
    <category domain="difficulty">news</category>
    <pubDate>Tue, 07 Jul 2026 02:24:02 +0000</pubDate>
    <source url="https://appsec.fyi/rce.html">RCE — appsec.fyi</source>
  </item>
  <item>
    <title>More than just data: The hidden security risks in Jupyter notebooks</title>
    <link>https://securityboulevard.com/2026/07/more-than-just-data-the-hidden-security-risks-in-jupyter-notebooks/</link>
    <guid isPermaLink="true">https://securityboulevard.com/2026/07/more-than-just-data-the-hidden-security-risks-in-jupyter-notebooks/</guid>
    <description>More than just data: The hidden security risks in Jupyter notebooks https://ift.tt/bWszvx6</description>
    <category>RCE</category>
    <category domain="difficulty">beginner</category>
    <pubDate>Mon, 06 Jul 2026 21:49:20 +0000</pubDate>
    <source url="https://appsec.fyi/rce.html">RCE — appsec.fyi</source>
  </item>
  <item>
    <title>Adobe ColdFusion flaw CVE-2026-48282 now exploited in the wild</title>
    <link>https://securityaffairs.com/194837/hacking/adobe-coldfusion-flaw-cve-2026-48282-now-exploited-in-the-wild.html</link>
    <guid isPermaLink="true">https://securityaffairs.com/194837/hacking/adobe-coldfusion-flaw-cve-2026-48282-now-exploited-in-the-wild.html</guid>
    <description>Writeup of CVE-2026-48282, a critical path traversal vulnerability in Adobe ColdFusion versions 2025.9, 2023.20, and earlier. This unauthenticated flaw allows remote attackers arbitrary code execution and is actively exploited in the wild, with attacks originating from India. Adobe urges immediate installation of security updates. This follows recent exploitation trends, including CISA&#x27;s inclusion of CVE-2017-3066 and a coordinated campaign exploiting numerous ColdFusion flaws.</description>
    <category>RCE</category>
    <category domain="difficulty">news</category>
    <pubDate>Mon, 06 Jul 2026 20:29:45 +0000</pubDate>
    <source url="https://appsec.fyi/rce.html">RCE — appsec.fyi</source>
  </item>
  <item>
    <title>North Korean PolinRider supply chain attack targets 108 unique repos</title>
    <link>https://www.scworld.com/news/north-korean-polinrider-supply-chain-attack-targets-108-unique-repos</link>
    <guid isPermaLink="true">https://www.scworld.com/news/north-korean-polinrider-supply-chain-attack-targets-108-unique-repos</guid>
    <description>Analysis of the PolinRider supply chain attack, linked to North Korea&#x27;s Lazarus group, details how adversaries compromise maintainer accounts across 108 unique open-source repositories. The attack injects obfuscated code into trusted packages, with a hidden loader retrieving payloads from blockchain infrastructure to install remote-access trojans and information stealers. This campaign targets developer secrets, cloud tokens, and cryptocurrency wallets, expanding beyond npm to ecosystems like Go modules and Packagist.</description>
    <category>Supply Chain Security</category>
    <category domain="difficulty">news</category>
    <pubDate>Mon, 06 Jul 2026 19:05:41 +0000</pubDate>
    <source url="https://appsec.fyi/supplychain.html">Supply Chain Security — appsec.fyi</source>
  </item>
  <item>
    <title>Multiple IBM WebSphere Vulnerabilities Enable XSS and Path Traversal Attacks</title>
    <link>https://cybersecuritynews.com/ibm-websphere-vulnerabilities/</link>
    <guid isPermaLink="true">https://cybersecuritynews.com/ibm-websphere-vulnerabilities/</guid>
    <description>Multiple vulnerabilities have been discovered in IBM WebSphere that could allow attackers to perform cross-site scripting (XSS) and path traversal attacks. These flaws impact various versions of the software, potentially exposing sensitive data and enabling malicious code execution. Organizations using IBM WebSphere should prioritize applying the latest security patches and updates to mitigate these risks.</description>
    <category>XSS</category>
    <category domain="difficulty">intermediate</category>
    <pubDate>Mon, 06 Jul 2026 19:01:29 +0000</pubDate>
    <source url="https://appsec.fyi/xss.html">XSS — appsec.fyi</source>
  </item>
  <item>
    <title>Microsoft Edge Vulnerability Allows Remote Attacker to Execute Arbitrary Code</title>
    <link>https://cybersecuritynews.com/microsoft-edge-flaw-code-execution/</link>
    <guid isPermaLink="true">https://cybersecuritynews.com/microsoft-edge-flaw-code-execution/</guid>
    <description>A critical vulnerability in Microsoft Edge has been disclosed, potentially allowing remote attackers to execute arbitrary code. This means a hacker could exploit this flaw to gain control of a user&#x27;s system without their knowledge. The exploit likely targets a weakness within the browser&#x27;s rendering engine or JavaScript execution. Further details on the specific vulnerability and its impact are available at the provided link. No bug bounty payout amount is mentioned in the content.</description>
    <category>RCE</category>
    <category domain="difficulty">news</category>
    <pubDate>Mon, 06 Jul 2026 14:39:17 +0000</pubDate>
    <source url="https://appsec.fyi/rce.html">RCE — appsec.fyi</source>
  </item>
  <item>
    <title>North Korean Hackers Target Open Source Developers in Supply Chain Attacks</title>
    <link>https://www.securityweek.com/north-korean-hackers-target-open-source-developers-in-supply-chain-attacks/</link>
    <guid isPermaLink="true">https://www.securityweek.com/north-korean-hackers-target-open-source-developers-in-supply-chain-attacks/</guid>
    <description>Analysis of PolinRider, a North Korean supply chain campaign targeting open source developers since December 2025. The operation injects JavaScript loaders into compromised GitHub repositories, distributing the DEV#POPPER RAT and OmniStealer. Attacked ecosystems include NPM, Packagist, Go modules, and Chrome extensions, with over 160 malicious artifacts identified. This campaign, linked to Contagious Interview operations, relies on tampering with maintainer accounts and Git history rewriting to disguise malicious code. Affected environments and credentials should be treated as compromised and remediation performed from a clean system.</description>
    <category>Supply Chain Security</category>
    <category domain="difficulty">news</category>
    <pubDate>Mon, 06 Jul 2026 14:20:44 +0000</pubDate>
    <source url="https://appsec.fyi/supplychain.html">Supply Chain Security — appsec.fyi</source>
  </item>
  <item>
    <title>Veeam Backup BinaryFormatter Flaw Enables Remote Code Execution</title>
    <link>https://gbhackers.com/veeam-backup-binaryformatter-flaw/</link>
    <guid isPermaLink="true">https://gbhackers.com/veeam-backup-binaryformatter-flaw/</guid>
    <description>Veeam Backup BinaryFormatter Flaw Enables Remote Code Execution https://ift.tt/XzVLFtl</description>
    <category>RCE</category>
    <category domain="difficulty">news</category>
    <pubDate>Mon, 06 Jul 2026 14:19:10 +0000</pubDate>
    <source url="https://appsec.fyi/rce.html">RCE — appsec.fyi</source>
  </item>
  <item>
    <title>npm Supply Chain Attack: North Korea Hits Mastra AI [2026]</title>
    <link>https://tech-insider.org/npm-supply-chain-attack-2026/</link>
    <guid isPermaLink="true">https://tech-insider.org/npm-supply-chain-attack-2026/</guid>
    <description>Analysis of the @mastra npm supply chain attack reveals North Korea&#x27;s Sapphire Sleet (BlueNoroff, APT38) compromised over 140 packages via a stolen maintainer account. The attackers leveraged a typosquatted dependency, `easy-day-js`, within a `postinstall` script to inject malware. This implant disabled TLS verification, contacted C2 infrastructure, deployed a persistent implant, and targeted cryptocurrency wallets like MetaMask, Phantom, and Coinbase Wallet, along with cloud credentials, demonstrating a significant maturation in nation-state-sponsored open-source malware campaigns.</description>
    <category>Supply Chain Security</category>
    <category domain="difficulty">news</category>
    <pubDate>Mon, 06 Jul 2026 11:40:34 +0000</pubDate>
    <source url="https://appsec.fyi/supplychain.html">Supply Chain Security — appsec.fyi</source>
  </item>
  <item>
    <title>Supply Chain Attacks Have Become Self-Reinforcing</title>
    <link>https://securityboulevard.com/2026/07/supply-chain-attacks-have-become-self-reinforcing/</link>
    <guid isPermaLink="true">https://securityboulevard.com/2026/07/supply-chain-attacks-have-become-self-reinforcing/</guid>
    <description>Supply chain attacks are increasingly self-reinforcing, creating a vicious cycle. Attackers exploit vulnerabilities in one component, which then compromises others down the chain. This means a single breach can have cascading effects, impacting numerous downstream systems and organizations. The interconnectedness of modern software and infrastructure amplifies this problem, making it harder to detect and mitigate these sophisticated threats.</description>
    <category>Supply Chain Security</category>
    <category domain="difficulty">beginner</category>
    <pubDate>Mon, 06 Jul 2026 11:20:16 +0000</pubDate>
    <source url="https://appsec.fyi/supplychain.html">Supply Chain Security — appsec.fyi</source>
  </item>
  <item>
    <title>Daily CyberSecurity: Four Fluentd vulnerabilities are fixed in v1.19.3 including a 9.8 RCE (CVE-2026-44024) and SSRF (CVE-2026-44161). Patch now. #Fluentd #RCE #SSRF #CVE #Cybersecurity #Infosec</title>
    <link>https://x.com/Daily_CyberSec/status/2072137430984171849</link>
    <guid isPermaLink="true">https://x.com/Daily_CyberSec/status/2072137430984171849</guid>
    <description>Daily CyberSecurity: Four Fluentd vulnerabilities are fixed in v1.19.3, including a 9.8 RCE (CVE-2026-44024) and SSRF (CVE-2026-44161). Patch now. #Fluentd #RCE #SSRF #CVE #Cybersecurity #Infosec http...</description>
    <category>SSRF</category>
    <category domain="difficulty">news</category>
    <pubDate>Mon, 06 Jul 2026 10:28:35 +0000</pubDate>
    <source url="https://appsec.fyi/ssrf.html">SSRF — appsec.fyi</source>
  </item>
  <item>
    <title>IBM WebSphere Application Server Hit by Critical XSS and Path Traversal Vulnerabilities</title>
    <link>https://gbhackers.com/ibm-websphere-application-server-hit-by-critical-xss/</link>
    <guid isPermaLink="true">https://gbhackers.com/ibm-websphere-application-server-hit-by-critical-xss/</guid>
    <description>IBM WebSphere Application Server is affected by critical vulnerabilities. These include Cross-Site Scripting (XSS) and path traversal flaws. The XSS vulnerability allows attackers to inject malicious scripts into web pages viewed by other users, potentially leading to session hijacking or data theft. The path traversal vulnerability could enable unauthorized access to sensitive files and directories on the server. Organizations using IBM WebSphere Application Server should update to the latest secure versions to mitigate these risks.</description>
    <category>XSS</category>
    <category domain="difficulty">news</category>
    <pubDate>Mon, 06 Jul 2026 10:02:16 +0000</pubDate>
    <source url="https://appsec.fyi/xss.html">XSS — appsec.fyi</source>
  </item>
  <item>
    <title>FBI warns developers over TeamPCP software supply chain attacks</title>
    <link>https://www.developer-tech.com/news/fbi-teampcp-software-supply-chain-attacks/</link>
    <guid isPermaLink="true">https://www.developer-tech.com/news/fbi-teampcp-software-supply-chain-attacks/</guid>
    <description>The FBI has issued a warning to developers regarding software supply chain attacks involving the TeamPCP tool. These attacks exploit vulnerabilities within the development process to compromise software. While the provided content does not mention a specific bug bounty payout amount, the alert highlights the significant threat posed by these sophisticated attacks to the integrity of software and the security of end-users. Developers are urged to implement robust security measures to mitigate these risks.</description>
    <category>Supply Chain Security</category>
    <category domain="difficulty">news</category>
    <pubDate>Mon, 06 Jul 2026 09:15:42 +0000</pubDate>
    <source url="https://appsec.fyi/supplychain.html">Supply Chain Security — appsec.fyi</source>
  </item>
  <item>
    <title>SourceCodester Timetabling: SQL Injection vulnerability CVE-2026-14770</title>
    <link>https://www.secnews.gr/en/719112/sourcecodester-sql-injection-cve-2026-14770/</link>
    <guid isPermaLink="true">https://www.secnews.gr/en/719112/sourcecodester-sql-injection-cve-2026-14770/</guid>
    <description>A SQL injection vulnerability, identified as CVE-2026-14770, has been discovered in SourceCodester Timetabling. This flaw allows attackers to potentially execute arbitrary SQL commands on the database. Further details regarding the exploit and its impact can be found at the provided link. No bug bounty payout amount was specified in the content.</description>
    <category>SQLi</category>
    <category domain="difficulty">news</category>
    <pubDate>Mon, 06 Jul 2026 08:41:20 +0000</pubDate>
    <source url="https://appsec.fyi/sqli.html">SQLi — appsec.fyi</source>
  </item>
  <item>
    <title>Critical IBM WebSphere Flaws Expose Servers to XSS and Path Traversal Attacks</title>
    <link>https://cyberpress.org/critical-ibm-websphere-flaws/</link>
    <guid isPermaLink="true">https://cyberpress.org/critical-ibm-websphere-flaws/</guid>
    <description>Critical vulnerabilities have been discovered in IBM WebSphere Application Server, enabling attackers to execute Cross-Site Scripting (XSS) and path traversal attacks. These flaws could allow for unauthorized access to sensitive data and the execution of malicious code on vulnerable servers. Organizations utilizing IBM WebSphere are strongly advised to apply available security patches and updates to mitigate these risks and protect their environments. Further details on the specific vulnerabilities and remediation steps can be found at the provided link.</description>
    <category>XSS</category>
    <category domain="difficulty">news</category>
    <pubDate>Mon, 06 Jul 2026 07:41:45 +0000</pubDate>
    <source url="https://appsec.fyi/xss.html">XSS — appsec.fyi</source>
  </item>
  <item>
    <title>Daily CyberSecurity: HawkTrace publicly disclosed Microsoft Exchange vulnerability CVE-2026-45504 with PoC exploit code. The SSRF flaw reads arbitrary files. Patch now. #MicrosoftExchange #CVE202645504 #SSRF #Cybersecurity #PoC #Infosec</title>
    <link>https://x.com/Daily_CyberSec/status/2072836456238694806</link>
    <guid isPermaLink="true">https://x.com/Daily_CyberSec/status/2072836456238694806</guid>
    <description>Daily CyberSecurity: HawkTrace publicly disclosed Microsoft Exchange vulnerability CVE-2026-45504 with PoC exploit code. The SSRF flaw reads arbitrary files. Patch now. #MicrosoftExchange #CVE20264550...</description>
    <category>SSRF</category>
    <category domain="difficulty">news</category>
    <pubDate>Mon, 06 Jul 2026 06:53:11 +0000</pubDate>
    <source url="https://appsec.fyi/ssrf.html">SSRF — appsec.fyi</source>
  </item>
  <item>
    <title>Daily CyberSecurity: HawkTrace publicly disclosed Microsoft Exchange vulnerability CVE-2026-45504 with PoC exploit code. The SSRF flaw reads arbitrary files. Patch now. #MicrosoftExchange #CVE202645504 #SSRF #Cybersecurity #PoC #Infosec</title>
    <link>https://x.com/Daily_Cyber_Sec/status/2072836456238694806</link>
    <guid isPermaLink="true">https://x.com/Daily_Cyber_Sec/status/2072836456238694806</guid>
    <description>Daily CyberSecurity: HawkTrace publicly disclosed Microsoft Exchange vulnerability CVE-2026-45504 with PoC exploit code. The SSRF flaw reads arbitrary files. Patch now. #MicrosoftExchange #CVE20264550...</description>
    <category>SSRF</category>
    <category domain="difficulty">news</category>
    <pubDate>Mon, 06 Jul 2026 06:23:13 +0000</pubDate>
    <source url="https://appsec.fyi/ssrf.html">SSRF — appsec.fyi</source>
  </item>
  <item>
    <title>The Internet’s Dirty Little Secret: Anyone Can Investigate Anyone — and Here Are 20 Free Tools to…</title>
    <link>https://infosecwriteups.com/the-internets-dirty-little-secret-anyone-can-investigate-anyone-and-here-are-20-free-tools-to-344536a7e606</link>
    <guid isPermaLink="true">https://infosecwriteups.com/the-internets-dirty-little-secret-anyone-can-investigate-anyone-and-here-are-20-free-tools-to-344536a7e606</guid>
    <description>Tools for OSINT investigations, offering 20 free online resources that allow individuals to legally gather information on anyone. These platforms enable users to conduct digital investigations comparable to those used by professionals and intelligence agencies, focusing on publicly available data.</description>
    <category>OSINT</category>
    <category domain="difficulty">beginner</category>
    <pubDate>Mon, 06 Jul 2026 06:00:39 +0000</pubDate>
    <source url="https://appsec.fyi/osint.html">OSINT — appsec.fyi</source>
  </item>
  <item>
    <title>AdversaryGraph v5.0: From CTI Mapping to Attack Simulation and SIEM Validation</title>
    <link>https://infosecwriteups.com/adversarygraph-v5-0-from-cti-mapping-to-attack-simulation-and-siem-validation-21873b2a6c39</link>
    <guid isPermaLink="true">https://infosecwriteups.com/adversarygraph-v5-0-from-cti-mapping-to-attack-simulation-and-siem-validation-21873b2a6c39</guid>
    <description>Library for CTI-to-detection workflow automation, AdversaryGraph v5.0 enhances attack simulation and SIEM validation. It integrates threat intelligence analysis, MITRE ATT&amp;CK mapping, IOC enrichment, malware analysis, attack-surface mapping, and AI-assisted reporting. New in v5.0, the Attack Simulation module allows analysts to run controlled lab scenarios based on TTPs, inspect target telemetry, forward logs to a SIEM collector, and utilize an AI assistant for multi-phase attack chain drills, directly linking observed behaviors to detection engineering.</description>
    <category>Recon</category>
    <category domain="difficulty">intermediate</category>
    <pubDate>Mon, 06 Jul 2026 06:00:39 +0000</pubDate>
    <source url="https://appsec.fyi/recon.html">Recon — appsec.fyi</source>
  </item>
  <item>
    <title>I Found an Unauthenticated Attachment Disclosure Bug in a WordPress Support Plugin — and a…</title>
    <link>https://infosecwriteups.com/i-found-an-unauthenticated-attachment-disclosure-bug-in-a-wordpress-support-plugin-and-a-435e86868d04</link>
    <guid isPermaLink="true">https://infosecwriteups.com/i-found-an-unauthenticated-attachment-disclosure-bug-in-a-wordpress-support-plugin-and-a-435e86868d04</guid>
    <description>Writeup detailing an unauthenticated attachment disclosure vulnerability in a WordPress support plugin. The research, conducted in an isolated Docker environment, reveals that a specific REST API endpoint lacks proper authorization checks, allowing anonymous users to access sensitive customer attachments like invoices and personal records. The author validates the vulnerability through proof-of-concept requests and MD5 hash comparisons, highlighting the potential for widespread data exfiltration.</description>
    <category>Authorization / Broken Access Control</category>
    <category domain="difficulty">intermediate</category>
    <pubDate>Mon, 06 Jul 2026 06:00:38 +0000</pubDate>
    <source url="https://appsec.fyi/authz.html">Authorization / Broken Access Control — appsec.fyi</source>
  </item>
  <item>
    <title>TryHackMe — Bounty Hacker: The FTP Server Was Talking. I Just Listened.</title>
    <link>https://infosecwriteups.com/tryhackme-bounty-hacker-the-ftp-server-was-talking-i-just-listened-fb6d40204184</link>
    <guid isPermaLink="true">https://infosecwriteups.com/tryhackme-bounty-hacker-the-ftp-server-was-talking-i-just-listened-fb6d40204184</guid>
    <description>Writeup detailing a TryHackMe room, &quot;Bounty Hacker: The FTP Server Was Talking. I Just Listened.&quot; This walkthrough focuses on practical exploitation, starting with anonymous FTP access on port 21 to obtain a username (`lin`) and a password list (`locks.txt`). It then proceeds to use Hydra for an SSH brute-force attack against port 22, successfully gaining a user shell. Privilege escalation is achieved by leveraging `tar`&#x27;s `checkpoint-action` capability, as documented on GTFOBins, to execute commands as root and retrieve the final flag.</description>
    <category>Bug Bounty</category>
    <category domain="difficulty">beginner</category>
    <pubDate>Mon, 06 Jul 2026 06:00:38 +0000</pubDate>
    <source url="https://appsec.fyi/bugbounty.html">Bug Bounty — appsec.fyi</source>
  </item>
</channel>
</rss>