🔥Telegram İfşa

🚀 New Blog: CSP Bypass DAST - Nuclei Templates (v10.1.5)! 🔥 Found an XSS but CSP is blocking execution? Learn how to bypass CSP restrictions using JSONP exploitation, custom payloads & misconfig detection! projectdiscovery.io/blog/csp-bypas… #CyberSecurity #Nuclei #DAST #CSPBypass

🌍 Explore the world—access countless cameras at your fingertips! Watch live HD feeds of nature, weather, and cityscapes anytime. From tourist spots to urban views and security cams—see it all effortlessly! Pinpoint locations and stream real-time moments from around the globe.

Introducing our new Templates Lab - an open-source repo to set up vulnerable environments for exploring the latest vulnerabilities and CVEs. Ideal playground for hands-on practical security testing and learning. Github: github.com/projectdiscove… Blog: projectdiscovery.io/blog/introduci…

New Blogpost - We identified a vulnerability in Discourse where a misconfiguration in Rails send_file + Nginx's internal directive can expose database backups! projectdiscovery.io/blog/discourse… This issue isn't limited to Discourse. It can affect other Rails + Nginx apps with similar

Here’s a breakdown of CVE-2025-29927: Next.js Middleware Authorization Bypass. We’ve also added a Nuclei template for detecting this vulnerability, along with a lab where you can try it out for yourself. Check it out here: projectdiscovery.io/blog/nextjs-mi… Nuclei by ProjectDiscovery

🚨 CVE-2025-2825: CrushFTP Authentication Bypass (CVSS 9.8) 🚨 A critical auth bypass in CrushFTP 10.0.0–10.8.3 and 11.0.0–11.3.0 allows remote attackers to gain full access using S3-style headers. The flaw stems from improper handling of authentication flags—letting attackers

🔗 Detection template for CVE-2025-31324: cloud.projectdiscovery.io/library/CVE-20… 🔗 Detection template for SAP Netweaver Backdoor: cloud.projectdiscovery.io/library/sap-ne…

It’s official! ProjectDiscovery is the winner of RSAC’s 2025 Innovation Sandbox! #RSAC

Last day to go GISEC GLOBAL We are at HALL 1, SP55: Come say hi!

🎯 Excited to share that I've completed the Matrix AI Security Challenge by Repello AI! ⚡️ Six levels of intense AI security challenges. 🏆 Earned my Badge of Honor. Now it's your turn to break free. 🔓 Take the red pill: matrix.repello.ai #llm #aisecurity

🚨 New blog post: Authentication Bypass to RCE in Versa Concerto (0-Day) Our research team discovered a critical authentication bypass leading to remote code execution in Versa Concerto, an enterprise SD-WAN orchestration product used by major telecoms and large corporations.

Introducing the Template Bounty Program! We’ve rolled out the Template Bounty Program💰, offering community members the opportunity to earn rewards 💸 for contributing impactful templates to the project. It’s a great way to support open-source security and earn recognition for

🚨 CVE-2025-0133 – Reflected XSS in PAN-OS Affects Palo Alto firewalls. Issued just 6 days ago. Nuclei detection template is now live ⚡️ #xss #infosec #security #bugbounty #paloalto

🚨 CVE-2025-5777 - critical 🚨 Citrix NetScaler Memory Disclosure - CitrixBleed 2 > Insufficient input validation leading to memory overread on the NetScaler Management ... 👾 cloud.projectdiscovery.io/library/CVE-20… Nuclei by ProjectDiscovery #NucleiTemplates #cve

We're heading to Las Vegas! Join us at Black Hat & Defcon 2025 💫 After winning RSA’s Innovation Sandbox and Black Hat Asia, we want to celebrate with our community. To our contributors, bloggers, community reviewers, researchers, and advocates: thank you. Together, we have

Only ~6% of CVEs are ever exploited… yet scanners still flood teams with endless alerts. More signatures ≠ more security. They guess. We validate. Curious what actually matters? Check out our latest blog: The Coverage Lie 👉 projectdiscovery.io/blog/why-curre…

I don't know who needs to hear this, but it's Friday. This evening, take care of yourself and spend time with your family. Good friends are hard to come by — take care of yourself first so that you don't push them away. analogue.computer/blog/chasing-a…

🚨 CVE-2025-20362 - medium 🚨 Cisco Secure Firewall ASA & FTD - Authentication Bypass > A vulnerability in the VPN web server of Cisco Secure Firewall Adaptive Security Appl... 👾 cloud.projectdiscovery.io/library/CVE-20… Nuclei by ProjectDiscovery #NucleiTemplates #cve

🚨 CVE-2025-61882 - critical 🚨 Oracle E-Business Suite 12.2.3–12.2.14 – Remote Code Execution > Oracle Concurrent Processing 12.2.3-12.2.14 contains a remote code execution caused b... 👾 cloud.projectdiscovery.io/library/CVE-20… Nuclei by ProjectDiscovery #NucleiTemplates #cve