HackerTrans
热门最新趋势评论往期问答秀出招聘

jiva

no profile record

提交

Dolibarr 23.0.0: PHP eval() whitelist bypass → RCE via two bugs (CVE-2026-22666)

jivasecurity.com
2 分·作者 jiva·3个月前·1 评论

EspoCRM: Formula engine and path traversal → RCE in six requests(CVE-2026-33656)

jivasecurity.com
1 分·作者 jiva·4个月前·0 评论

评论

jiva
·3个月前·讨论
Root cause analysis and full PoC. Coordinated disclosure — patch is available as of 4/4/2026
jiva
·6年前·讨论
Sure: https://gist.github.com/jiva/954a22bafcafec2d594b5c3454a10b0...
jiva
·6年前·讨论
I use gdb dashboard

https://github.com/cyrus-and/gdb-dashboard

It makes for a very pleasant debugging experience

https://i.imgur.com/iw21sbU.jpg
jiva
·7年前·讨论
"there will be no updates, not even source-only security patches" from the man himself: https://mail.python.org/pipermail/python-dev/2018-March/1523...