HackerTrans
TopNewTrendsCommentsPastAskShowJobs

jiva

no profile record

Submissions

Dolibarr 23.0.0: PHP eval() whitelist bypass → RCE via two bugs (CVE-2026-22666)

jivasecurity.com
2 points·by jiva·3개월 전·1 comments

EspoCRM: Formula engine and path traversal → RCE in six requests(CVE-2026-33656)

jivasecurity.com
1 points·by jiva·4개월 전·0 comments

comments

jiva
·3개월 전·discuss
Root cause analysis and full PoC. Coordinated disclosure — patch is available as of 4/4/2026
jiva
·6년 전·discuss
Sure: https://gist.github.com/jiva/954a22bafcafec2d594b5c3454a10b0...
jiva
·6년 전·discuss
I use gdb dashboard

https://github.com/cyrus-and/gdb-dashboard

It makes for a very pleasant debugging experience

https://i.imgur.com/iw21sbU.jpg
jiva
·7년 전·discuss
"there will be no updates, not even source-only security patches" from the man himself: https://mail.python.org/pipermail/python-dev/2018-March/1523...