CVE Alert: CVE-2025-21087
Vulnerability Summary: CVE-2025-21087 When Client or Server SSL profiles are configured on a Virtual Server, or DNSSEC signing operations are...
CVE Alert: CVE-2024-56135
Vulnerability Summary: CVE-2024-56135 Improper Input Validation vulnerability of Authenticated User in Progress LoadMaster allows : OS Command Injection. This issue...
CVE Alert: CVE-2025-20029
Vulnerability Summary: CVE-2025-20029 Command injection vulnerability exists in iControl REST and BIG-IP TMOS Shell (tmsh) save command, which may allow...
CVE Alert: CVE-2024-56134
Vulnerability Summary: CVE-2024-56134 Improper Input Validation vulnerability of Authenticated User in Progress LoadMaster allows : OS Command Injection. This issue...
HackerOne Bug Bounty Disclosure: -actionview-sanitize-helper-bypass-with-math-related-tags-mokusou
Company Name: Internet Bug Bounty Company HackerOne URL: https://hackerone.com/ibb Submitted By:mokusouLink to Submitters Profile:https://hackerone.com/mokusou Report Title:#2931639 ActionView sanitize helper bypass...
HackerOne Bug Bounty Disclosure: actionview-sanitize-helper-bypass-with-noscript-taise
Company Name: Internet Bug Bounty Company HackerOne URL: https://hackerone.com/ibb Submitted By:taiseLink to Submitters Profile:https://hackerone.com/taise Report Title:ActionView sanitize helper bypass with...
HackerOne Bug Bounty Disclosure: -actionview-sanitize-helper-bypass-with-style-and-math-mokusou
Company Name: Internet Bug Bounty Company HackerOne URL: https://hackerone.com/ibb Submitted By:mokusouLink to Submitters Profile:https://hackerone.com/mokusou Report Title: ActionView sanitize helper bypass...
HackerOne Bug Bounty Disclosure: actionview-sanitize-helper-bypass-with-style-mokusou
Company Name: Internet Bug Bounty Company HackerOne URL: https://hackerone.com/ibb Submitted By:mokusouLink to Submitters Profile:https://hackerone.com/mokusou Report Title:ActionView sanitize helper bypass with...
HackerOne Bug Bounty Disclosure: goaway-http-frames-cause-memory-leak-outside-heap-newtmitch
Company Name: Node.js Company HackerOne URL: https://hackerone.com/nodejs Submitted By:newtmitchLink to Submitters Profile:https://hackerone.com/newtmitch Report Title:GOAWAY HTTP/2 frames cause memory leak outside...
HackerOne Bug Bounty Disclosure: cve-potential-denial-of-service-in-ipv-validation–xsaravana
Company Name: Internet Bug Bounty Company HackerOne URL: https://hackerone.com/ibb Submitted By:0xsaravanaLink to Submitters Profile:https://hackerone.com/0xsaravana Report Title:CVE-2024-56374 Potential denial-of-service in IPv6...
HackerOne Bug Bounty Disclosure: -cve-possible-content-security-policy-bypass-in-action-dispatch-ryotak
Company Name: Internet Bug Bounty Company HackerOne URL: https://hackerone.com/ibb Submitted By:ryotakLink to Submitters Profile:https://hackerone.com/ryotak Report Title: Possible Content Security Policy...
HackerOne Bug Bounty Disclosure: open-redirect-p-anand
Company Name: XVIDEOS Company HackerOne URL: https://hackerone.com/xvideos Submitted By:p_anand1234Link to Submitters Profile:https://hackerone.com/p_anand1234 Report Title:Open redirectReport Link:https://hackerone.com/reports/2957962Date Submitted:06 February 2025 A...
HackerOne Bug Bounty Disclosure: xss-on-using-the-legacy-graphie-to-png-api-sikn
Company Name: Khan Academy Company HackerOne URL: https://hackerone.com/khanacademy Submitted By:siknLink to Submitters Profile:https://hackerone.com/sikn Report Title:XSS on using the legacy "Graphie...
HackerOne Bug Bounty Disclosure: actionview-sanitize-helper-bypass-with-style-and-svg-tags-taise
Company Name: Internet Bug Bounty Company HackerOne URL: https://hackerone.com/ibb Submitted By:taiseLink to Submitters Profile:https://hackerone.com/taise Report Title:ActionView sanitize helper bypass with...
[AKIRA] – Ransomware Victim: NG-BLU Networks
Ransomware Group: AKIRA VICTIM NAME: NG-BLU Networks NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[AKIRA] – Ransomware Victim: Presence From Innovation (PFI)
Ransomware Group: AKIRA VICTIM NAME: Presence From Innovation (PFI) NOTE: No files or stolen information are by RedPacket Security. Any...
CVE Alert: CVE-2025-23239
Vulnerability Summary: CVE-2025-23239 When running in Appliance mode, an authenticated remote command injection vulnerability exists in an undisclosed iControl REST...
CVE Alert: CVE-2025-23412
Vulnerability Summary: CVE-2025-23412 When BIG-IP APM Access Profile is configured on a virtual server, undisclosed request can cause TMM to...
CVE Alert: CVE-2025-22891
Vulnerability Summary: CVE-2025-22891 When BIG-IP PEM Control Plane listener Virtual Server is configured with Diameter Endpoint profile, undisclosed traffic can...
CVE Alert: CVE-2025-23413
Vulnerability Summary: CVE-2025-23413 When users log in through the webUI or API using local authentication, BIG-IP Next Central Manager may...
CVE Alert: CVE-2025-22846
Vulnerability Summary: CVE-2025-22846 When SIP Session and Router ALG profiles are configured on a Message Routing type virtual server, undisclosed...
CVE Alert: CVE-2025-24320
Vulnerability Summary: CVE-2025-24320 A stored cross-site scripting (XSS) vulnerability exists in an undisclosed page of the BIG-IP Configuration utility that...
CVE Alert: CVE-2025-23415
Vulnerability Summary: CVE-2025-23415 An insufficient verification of data authenticity vulnerability exists in BIG-IP APM Access Policy endpoint inspection that may...
CVE Alert: CVE-2025-24312
Vulnerability Summary: CVE-2025-24312 When BIG-IP AFM is provisioned with IPS module enabled and protocol inspection profile is configured on a...
