Funny bug in Glovo, which is a delivery platform for taking orders and dispatching deliveries.The bug is an integer overflow in the quantity parameter of the POST request for the order, which can affect the total price of the order…
Vulnerabilities tagged 'interesting bug'
Authentication bug in Priceline through the use of Google OneTap.The problem is that they assume emails provided through Google OneTap are verified and authentic…
AWS provided a hot-patching service that would patch Java binaries against the Log4Shell vulnerability but that introduced a container escape.
Java’s implementation of ECDSA signature validation deviated from the algorithm in two distinct ways that could allow any attacker to craft a valid signature for any key.
Cool trick impacting php’s
filter_var which is actually a bit of a binary-level issue, if you provide a long enough string as the argument to
filter_vareventually some code for (
FILTER_FLAG_HOSTNAME) will mistakenly believe the size is much smaller than it actually is (negative).
Yet another branch predictor bug was discovered by grsecurity when testing a performance optimization for Reuse Attack Protector (RAP) return hash sequences.RAP sequences have an unconditional jump, followed by a
movabs instruction and some
int3 instructions for debugging purposes…
We have previously discussed this vulnerability, which provides a primitive to free adjacent memory.
I want to say the root of this issue is from trying to determine by name whether an identifier is a commit hash or a branch name.While git allows the creation of branches consisting of 40 hex characters, GitHub will reject the branch…
There are two bugs here, one that allows an attacker to reset the password of any account, another to bypass 2FA.