GNU social JP
  • FAQ
  • Login
GNU social JPは日本のGNU socialサーバーです。
Usage/ToS/admin/test/Pleroma FE

  • Public

    • Public
    • Network
    • Groups
    • Featured
    • Popular
    • People

CrushFTP 11.0.0 to 11.3.0 are vulnerable. Update to 11.3.1+ immediately.# CrushFTP 10.0.0 to 10.8.3 are vulnerable. Update to 10.8.4+ immediately.#

Download link

https://media.infosec.exchange/infosec.exchange/media_attachments/files/114/279/610/521/759/845/original/8f190a43dddeb82b.jpeg

Notices where this attachment appears

  1. Embed this notice
    Will Dormann (wdormann@infosec.exchange)'s status on Friday, 04-Apr-2025 21:21:28 JST Will Dormann Will Dormann
    in reply to

    There's this magical thinking that the CVE ID is what gives attackers the ability to compromise systems.

    If you say that your software is vulnerable but fail to assign CVEs, you're only helping the attackers.

    I remember the time that Microsoft got mad at me for "leaking" one of their CVEs to the public before the update was available. As in their world, CVE IDs were for Microsoft updates. Not for identifying vulnerabilities. 🤦♂️

    In conversation about 2 days ago from infosec.exchange permalink
  • Help
  • About
  • FAQ
  • TOS
  • Privacy
  • Source
  • Version
  • Contact

GNU social JP is a social network, courtesy of GNU social JP管理人. It runs on GNU social, version 2.0.2-dev, available under the GNU Affero General Public License.

Creative Commons Attribution 3.0 All GNU social JP content and data are available under the Creative Commons Attribution 3.0 license.