Perfection 🤌

RT @Kevin2600: This is what happenes when you touch the untouchable :(

Our advisory on that vuln:

Looks like bug bounty hunters have started using CVE-2025-4009. Evertz still hasn’t released a patch to this day.

Good stuff !.

RT @pedrib1337: We are looking for a junior security researcher 🤠 .No university degree or previous work experience required, but MUST be….

This is CVE-2025-41663

This is CVE-2025-41661 and CVE-2025-41662

It's disclosure day! 2 unauth RCE affecting CGI shell scripts (CVE-2025-41661, CVE-2025-41662) and 1 unauth RCE (CVE-2025-41663) affecting a custom VPN client found in Weidmüller IE-SR-2TX-WL industrial routers. All of them automatically identified by our platform™ 👇.

@n_o_t_h_a_n_k_s look what you made us do.

I’m quite proud of what we achieved since we started working on unblob. What we support internally is now public, check out all the formats at

I’m being gaslighted by a vendor about our coordinated disclosure policy. Guess the vendor.

a single schemastore commit broke taplo, which is now failing all CI pipelines doing schema validation. Modern dev infrastructure is 👌.

Note: fourth advisory has been postponed to end of June. See u then :).

Here's our third security advisory for vulnerabilities identified by our bash static analyzer. This is also our second full disclosure after 90 days since Diviotec didn't answer any of our requests. Have a read, it's a nice demonstration of platform capabilities 👇.

We continue publishing advisories on issues identified by our platform using bash static analysis. Today we look at CVE-2025-4010 affecting Netcomm (aka Lantronix) NTC-6200 and NWL series. We're still waiting for a proper patch. Link below 👇

RT @onekey_rl: One of our own identified a buffer overflow in an industrial Bluetooth stack, details are now available at .

Please don't go break television. Thanks.