Dolibarr 23.0.0: PHP eval() whitelist bypass → RCE via two bugs (CVE-2026-22666)jivasecurity.com2 points·by jiva·3 miesiące temu·1 comments
EspoCRM: Formula engine and path traversal → RCE in six requests(CVE-2026-33656)jivasecurity.com1 points·by jiva·4 miesiące temu·0 comments
jiva·3 miesiące temu·discussRoot cause analysis and full PoC. Coordinated disclosure — patch is available as of 4/4/2026
jiva·6 lat temu·discussI use gdb dashboardhttps://github.com/cyrus-and/gdb-dashboardIt makes for a very pleasant debugging experiencehttps://i.imgur.com/iw21sbU.jpg
jiva·7 lat temu·discuss"there will be no updates, not even source-only security patches" from the man himself: https://mail.python.org/pipermail/python-dev/2018-March/1523...