X S C O R P (@xscorp7) Twitter Tweets • TwiCopy

Our security research team created a high fidelity check for the Next.js/RSC RCE (CVE-2025-55182 & CVE-2025-66478). Read more on our blog here: slcyber.io/research-cente…

thumb_up_off_alt227

chat_bubble_outline2

repeat50

shareShare

X S C O R P

@xscorp7

2 months ago

I will be at BSides Vizag. Let’s meet if you guys are around. #bsidesvizag

thumb_up_off_alt3

chat_bubble_outline1

repeat0

shareShare

maple3142

@maple3142

2 months ago

A POC for CVE-2025-55182 gist.github.com/maple3142/48bc…

thumb_up_off_alt1,1K

chat_bubble_outline30

repeat382

shareShare

It’s easy to become ”stressed out” on all the things you ”need” to learn in any field. Especially as builders and breakers. Where new tools and techniques surface more or less every day. Ai this, fomo that, And In periods it might even feel like you are missing out, wasting

thumb_up_off_alt49

chat_bubble_outline1

repeat7

shareShare

Suraj (سج) Kumar Talreja

@suritalreja

2 months ago

Your 30s hit differently. You’re suddenly standing at the intersection of every responsibility life can throw at you. As the elder brother, you’re expected to take care of your younger sibling’s marriage and future. At the same time, you’re raising a child who’s growing every

thumb_up_off_alt279

chat_bubble_outline16

repeat26

shareShare

React

@reactjs

2 months ago

Researchers have found two new vulnerabilities in React Server Components while attempting to exploit the patches last week. These are new issues, separate from the critical CVE last week. The patch for React2Shell remains effective for the Remote Code Execution exploit.

thumb_up_off_alt4,4K

chat_bubble_outline298

repeat937

shareShare

X S C O R P

@xscorp7

2 months ago

Is cloudflare DNS really rate-limited at 10 QPS? I couldn't find any official numbers but this thread: news.ycombinator.com/item?id=369844… Can somebody confirm? I have a service that makes 1000+ queries per second.

thumb_up_off_alt0

chat_bubble_outline0

repeat0

shareShare

Ahmed Attia | أحمد عطية

@limbo0x01

a month ago

Reverse engineering be like: #ctf

thumb_up_off_alt2,2K

chat_bubble_outline28

repeat201

shareShare

$¯\_(ツ)_/¯ (@chocapikk_) 's Twitter Profile Photo$

¯\_(ツ)_/¯

@chocapikk_

a month ago

CVE-2026-21858 + CVE-2025-68613: n8n Ni8mare - Full Chain Exploit Unauthenticated to Root RCE: - LFI via Content-Type confusion - Read /proc/self/environ to find HOME - Steal encryption key + database - Forge admin JWT token - Expression injection sandbox bypass - RCE as root

$¯\_(ツ)_/¯ (@chocapikk_) on Twitter photo CVE-2026-21858 + CVE-2025-68613: n8n Ni8mare - Full Chain Exploit Unauthenticated to Root RCE: - LFI via Content-Type confusion - Read /proc/self/environ to find HOME - Steal encryption key + database - Forge admin JWT token - Expression injection sandbox bypass - RCE as root$

thumb_up_off_alt828

chat_bubble_outline10

repeat212

shareShare

Devansh (⚡, 🥷)

@0xasm0d3us

a month ago

Two of my JWK/JWKS related high severity vulns are now fixed in HonoJS (CVE Pending). Please update to the latest version asap! Advisory: github.com/honojs/hono/se… github.com/honojs/hono/se…