HackerTrans
TopNewTrendsCommentsPastAskShowJobs

jiva

no profile record

Submissions

Dolibarr 23.0.0: PHP eval() whitelist bypass → RCE via two bugs (CVE-2026-22666)

jivasecurity.com
2 points·by jiva·قبل 3 أشهر·1 comments

EspoCRM: Formula engine and path traversal → RCE in six requests(CVE-2026-33656)

jivasecurity.com
1 points·by jiva·قبل 4 أشهر·0 comments

comments

jiva
·قبل 3 أشهر·discuss
Root cause analysis and full PoC. Coordinated disclosure — patch is available as of 4/4/2026
jiva
·قبل 6 سنوات·discuss
Sure: https://gist.github.com/jiva/954a22bafcafec2d594b5c3454a10b0...
jiva
·قبل 6 سنوات·discuss
I use gdb dashboard

https://github.com/cyrus-and/gdb-dashboard

It makes for a very pleasant debugging experience

https://i.imgur.com/iw21sbU.jpg
jiva
·قبل 7 سنوات·discuss
"there will be no updates, not even source-only security patches" from the man himself: https://mail.python.org/pipermail/python-dev/2018-March/1523...