infosex.exchange <3

You are probably looking for the infosec.exchange Mastodon instance

This host is mostly for my random stuff, and in little part acts like a well-intentioned placeholder for the typosquatted domain.

Discoverability and Archiving

Currently I'm using this host for saving the items from my own feeds to the Wayback Machine and provide in-links for search engines. I hate that I have to do this, but the non-sense ideology of Mastodon pretty much ruined the search feature for Fediverse as a whole, and this wasn't changed by the fact that they owned their mistake and implemented search eventually.

Yes, I (or anyone else) could do similar things with other peoples published feeds, regardless of the tantrum. No, you can't defederate this, because the process doesn't rely on an instance.

Gluttony Section for Search Engines

Invision Community <= 4.7.20 (calendar/view.php) SQL Injection Vulnerability [CVE-2025-48932]

https://karmainsecurity.com/KIS-2025-06

(Also an XSS @ KIS-2025-05, CVE-2025-48933)
this post | permalink
Interview with Senior DevOps engineer 2025

https://youtu.be/rXPpkzdS-q4

Programmers are Also Human is usually great, but this one is just hysterical xD
this post | permalink
[RSS] The Guest Who Could: Exploiting LPE in VMWare Tools

https://swarm.ptsecurity.com/the-guest-who-could-exploiting-lpe-in-vmware-tools/

CVE-2025-22230 CVE-2025-22247
this post | permalink
Bloomberg Comdb2 vulnerability reports by Cisco Talos (via @talosvulns ):

https://talosintelligence.com/vulnerability_reports/TALOS-2025-2201
https://talosintelligence.com/vulnerability_reports/TALOS-2025-2200
https://talosintelligence.com/vulnerability_reports/TALOS-2025-2199
https://talosintelligence.com/vulnerability_reports/TALOS-2025-2198

CVE-2025-35966 CVE-2025-36512 CVE-2025-48498 CVE-2025-46354
this post | permalink
[RSS] How We Accidentally Discovered a Remote Code Execution Vulnerability in ETQ Reliance

https://slcyber.io/assetnote-security-research-center/how-we-accidentally-discovered-a-remote-code-execution-vulnerability-in-etq-reliance/

CVE-2025-34140 CVE-2025-34141 CVE-2025-34142 CVE-2025-34143
this post | permalink
[RSS] Reverse Engineering Security Products: Developing an Advanced Tamper Tradecraft (BHMEA24 slides)

https://github.com/emcalv/BlackHat-MEA-2024-slides/blob/main/BH%20MEA%202024%20-%20Reverse%20Engineering%20of%20Security%20Products_%20Defender.pdf
this post | permalink
[RSS] Quick-Skoping through Netskope SWG Tenants - CVE-2024-7401

Marketing domain -> check!

https://quickskope.com/
this post | permalink
[RSS] Ruckus Unleashed: Multiple vulnerabilities exploited

CVE-2025-46116 CVE-2025-46117 CVE-2025-46118 CVE-2025-46119 CVE-2025-46120 CVE-2025-46121 CVE-2025-46122 CVE-2025-46123

https://sector7.computest.nl/post/2025-07-ruckus-unleashed/
this post | permalink
[RSS] Miggo Security%27s AI Slop & Potential Trademark Infringement

https://jericho.blog/2025/07/21/miggo-securitys-ai-slop-potential-trademark-infringement/
this post | permalink
WAFFLED: Exploiting Parsing Discrepancies to Bypass Web Application Firewalls [PDF]

https://arxiv.org/pdf/2503.10846v1
this post | permalink
Next Page