🚨🚨CVE-2025-66489 (CVSS 9.9): https://t.co/Bc24fzUHWX Authentication Bypass If an attacker supplies any TOTP code during login, the password check is completely skipped thanks to broken conditional logic. Search by vul.cve Filter👉vul.cve="CVE-2025-66489" ZoomEye

If You Ever See Language Parameter, Then Never Forget to Test Expression-Language Injection Style Payload. ✅POC Payload: 1. Change the Method GET to POST 2. Language={${system("cat+/etc/passwd")}} For More Join my BugBounty Telegram Channel: https://t.co/J6uPf8H57o

If understanding AD is still an issue, read this: https://t.co/DsrmBBIMZ7 #ActiveDirectory

#APT28 Espionage Tool Provides Backdoor Access to Microsoft Outlook https://t.co/zOXG0PVuNz

oh no 🟥 CVE-2025-32463, CVSS: 9.3 (#Critical) #Sudo version 1.9.14 to 1.9.17 #Vulnerability allows local users to gain root access via the --chroot option due to improper handling of /etc/nsswitch.conf. #CyberSecurity #CVE #PrivilegeEscalation https://t.co/nYZy5HjHkh

pally is live. stalk everyone. try it today link below 👇

Zod 4 is now stable and production-ready! 💎 7x faster object parsing 💎 100x fewer tsc instantiations 💎 localization in 34 languages 💎 recursive z.object()! 💎 metadata 💎 z.toJSONSchema() 💎 z.templateLiteral() 💎 z.int32(), z.float32(), etc 💎 z.file() 💎 and a new logo :)

Unpacking VMProtect 3 (x64) 🤷‍♂️

What if you could use React hooks inline? 🚀 Introducing RenderHooks ☑︎ maps, conditionals, nested JSX ☑︎ doesn't break Rules of Hooks ☑︎ supports built-in & custom hooks ☑︎ outer-state access ☑︎ zero boilerplate ☑︎ just <$> npm i render-hooks GitHub & Demos 🧵👇

Je vous propose de visiter la Normandie !!! Voici la Belle Fieffe dans le bocage Normand : https://t.co/iRH68Jw852 Merci pour le RT

Our team has just successfully reproduced the IngressNightmare vulnerability (CVE-2025-1097, CVE-2025-1098, CVE-2025-24514, and CVE-2025-1974) and created a custom exploit achieving RCE. It's a Pre-Auth RCE affecting Ingress NGINX that allows complete cluster takeover. We'll

🚀 To celebrate the upcoming Azure Red Team Expert cert, we're launching the first Cloud PEASS: Azure PEASS! 🔎 It gets Azure/Entra tokens, finds all your permissions, highlights sensitive ones HackTricksAI and tells you how to privesc! 👉 https://t.co/2bfhcf4itb #hacktricks

We (+@sagitz_ @ronenshh @hillai) found a series of unauthenticated RCEs in core @KubernetesIO project "Ingress-NGINX". The impact? From zero permissions ➡️ to complete cluster takeover 🤯 This is the story of #IngressNightmare 🧵⬇️

📅 Registration for #picoCTF2025 is open!. 🌟 Competition Dates: ⏰ Start: 12:00pm ET, March 7 ⏰ End: 3:00pm ET, March 17 📝 Write-ups due on March 17, 2025 Ready to test your skills and have fun? 💻 Let’s go! 🌐 Practice daily at

Gaza. Unreal. Absolutely unreal what humanity is allowing to happen here.

Yes

So true

Q: Kamala says President Trump's tariffs are a "sales tax" — but the Harris-Biden admin just announced new tariffs on Chinese goods. Isn't it the same thing? KJP: Well, see... Q: Is it not the same thing? KJP: We're trying to protect workers. (TRUMP WAS RIGHT — AGAIN)

Great research work by @Josep_Pi on reverse engineering and exploiting contactless payment terminals Slides: https://t.co/Q52vhGEfQW YT video: https://t.co/X2hyOF0Y7z #nfc

Nous allons devoir commencer à défendre les nôtres La tragédie frappe Francesca Donato, députée européenne, qui a trouvé son mari étranglé dans sa voiture. Quelques semaines seulement après avoir mis en garde contre la situation géopolitique dangereuse suite à l'attentat contre