Hazard Lab

20 posts

Hazard Lab

@thehazardlab

Security Research Group https://t.co/2JurJNVCqK

Berlin, Germany Beigetreten Şubat 2024

958 Folgt3.6K Follower

Hazard Lab@thehazardlab·23 Ara

CVE-2025-9959: smolagents Python Sandbox Escape hazardlab.substack.com/publish/post/1… Python sandbox implementations often focus on blocking dangerous attribute access patterns like `obj.__class__` but forget that the same introspection is achievable through method invocation. #python #cve

English

868

Hazard Lab retweetet

INCIBE-CERT@incibe_cert·16 May

⚠️#INCIBEaviso | Vulnerabilidad de Path Traversal en #PNETLab incibe.es/incibe-cert/al… #AvisosDeSeguridad #TI

Español

910

Hazard Lab retweetet

INCIBE-CERT@incibe_cert·18 Mar

⚠️#INCIBEaviso | Almacenamiento inseguro de información sensible en #NTFSTool #CVE #CVE-2025-2489 incibe.es/incibe-cert/al… #AvisosDeSeguridad #CNA #0day

Español

622

Hazard Lab retweetet

Vulmon Vulnerability Feed@VulmonFeeds·8 Mar

CVE-2024-23780 CVE-2024-23780 Exploit for Netbox This script exploits CVE-2024-23780, which allows remote code execution (RCE) on Netbox instances. Usage python netbox_exploit.py --url --username --password vulmon.com/vulnerabilityd…

English

820

Hazard Lab retweetet

Hazard Researchers@hazardres·8 Mar

Unveiling CVE-2024-23780: Explore the Impact and Implications on NetBox's Security Landscape. hazardlab.io/netbox-cve-202… POC: github.com/HazardLab-IO/C… Fofa: en.fofa.info/result?qbase64… #netbox #security #network #devops #infrastructure #cve #exploit

English

784

Hazard Lab retweetet

Hazard Researchers@hazardres·24 Şub

#CVE-2023-50438 Manageengine AdAudit Plus #RCE

Français

266

Hazard Lab retweetet

Hazard Researchers@hazardres·23 Şub

Hazard Lab delves into the intricate vulnerabilities of ManageEngine ADAudit Plus with their comprehensive exploration of CVE-2023-50438. hazardlab.io/manageengine-a… #adaudit #manageengine #activedirectory #cve #vulnerability #asm

English

560

Hazard Lab retweetet

DEFION Research Labs@defionlabs·14 Haz

We've published our writeup of CVE-2024-20693, a vulnerability in Windows that allowed spoofing the code signature of binaries by placing them on an SMB share. This research originally was about something different, but we ran into a signature check... sector7.computest.nl/post/2024-06-c…

English

285

40.5K

Hazard Lab retweetet

DEVCORE@d3vc0r3·6 Haz

📣 PHP 最新發布的安全更新，修補由 DEVCORE 回報的重大 RCE 零時差漏洞 CVE-2024-4577。漏洞影響範圍包含 Windows 作業系統上繁體中文、簡體中文、日文三個語系的所有 PHP 版本。請相關使用者儘速參考 PHP 官方及 DEVCORE Blog 檢查及更新。 devco.re/blog/2024/06/0…

中文

100

11.6K

Hazard Lab@thehazardlab·13 Haz

paper.seebug.org/3142/ A PHP 0day story: 4 years from Crash to Exp #php #0day

English

155

Hazard Lab@thehazardlab·25 Mar

@qatarishehzada Very Deep

English

قطری شہزادہ@crosstawlk·25 Mar

'Sometimes you don't realize how special something is until you lose it. That's why Ramadan is so special.' - Nouman Ali Khan

English

732

Hazard Lab@thehazardlab·25 Mar

@Nisar_pk Exact

English

NA Khan@Nisar_pk·25 Mar

دوست کی شناخت ایسی ہوتی ہے جو کبھی دیکھی نہیں جاتی، لیکن اس کی موجودگی کا احساس ہمیشہ محسوس ہوتا ہے۔ اس کی کمی کا احساس بہت مضبوط ہوتا ہے اور ہم اسے محسوس کرتے ہیں۔

اردو

628

Hazard Lab@thehazardlab·25 Mar

@albatross916 😁😉😁

QME