Dolibarr 23.0.0: PHP eval() whitelist bypass → RCE via two bugs (CVE-2026-22666)jivasecurity.com2 分·作者 jiva·3个月前·1 评论
EspoCRM: Formula engine and path traversal → RCE in six requests(CVE-2026-33656)jivasecurity.com1 分·作者 jiva·4个月前·0 评论
jiva·3个月前·讨论Root cause analysis and full PoC. Coordinated disclosure — patch is available as of 4/4/2026
jiva·6年前·讨论I use gdb dashboardhttps://github.com/cyrus-and/gdb-dashboardIt makes for a very pleasant debugging experiencehttps://i.imgur.com/iw21sbU.jpg
jiva·7年前·讨论"there will be no updates, not even source-only security patches" from the man himself: https://mail.python.org/pipermail/python-dev/2018-March/1523...