Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://chaos.social/users/kubikpixel/statuses/114841112063918803">𝕂𝚞𝚋𝚒𝚔ℙ𝚒𝚡𝚎𝚕 (kubikpixel@chaos.social)'s status on Sunday, 13-Jul-2025 03:24:49 JST</a><a href="https://chaos.social/@kubikpixel" title="kubikpixel@chaos.social"><img src="https://gnusocial.jp/avatar/8926-48-20230128104157.webp" width="48" height="48" alt="𝕂𝚞𝚋𝚒𝚔ℙ𝚒𝚡𝚎𝚕" style="position: absolute; left: 0; top: 0;">𝕂𝚞𝚋𝚒𝚔ℙ𝚒𝚡𝚎𝚕</a></section><article><p>»Over 600 Laravel Apps Exposed to Remote Code Execution Due to Leaked APP_KEYs on GitHub:<br>Cybersecurity researchers have discovered a serious security issue that allows leaked Laravel APP_KEY's to be weaponized to gain remote code execution capabilities on hundreds of applications.«</p><p>Never store your access keys in Git, especially not in the code – do programmers need to be taught this?!??</p><p>🔓 <a href="https://thehackernews.com/2025/07/over-600-laravel-apps-exposed-to-remote.html" rel="nofollow noreferrer">https://thehackernews.com/2025/07/over-600-laravel-apps-exposed-to-remote.html</a></p><p><a href="https://chaos.social/tags/cybersecurity" rel="tag">#cybersecurity</a> <a href="https://chaos.social/tags/appkey" rel="tag">#appkey</a> <a href="https://chaos.social/tags/app_kee" rel="tag">#app_kee</a> <a href="https://chaos.social/tags/laravel" rel="tag">#laravel</a> <a href="https://chaos.social/tags/github" rel="tag">#github</a> <a href="https://chaos.social/tags/app" rel="tag">#app</a> <a href="https://chaos.social/tags/remote" rel="tag">#remote</a> <a href="https://chaos.social/tags/code" rel="tag">#code</a> <a href="https://chaos.social/tags/itsec" rel="tag">#itsec</a> <a href="https://chaos.social/tags/php" rel="tag">#php</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/5342826#notice-10481466">In conversation</a><time datetime="2025-07-13T03:24:49+09:00" title="Sunday, 13-Jul-2025 03:24:49 JST">about 4 months ago</time> <span>from <span><a href="https://chaos.social/@kubikpixel/114841112063918803" rel="external" title="Sent from chaos.social via ActivityPub">chaos.social</a></span></span><a href="https://chaos.social/@kubikpixel/114841112063918803">permalink</a><h4>Attachments</h4><ol><li><article><header><div>Domain not in remote thumbnail source whitelist: blogger.googleusercontent.com</div><h5><a href="https://thehackernews.com/2025/07/over-600-laravel-apps-exposed-to-remote.html#cybersecurity">Over 600 Laravel Apps Exposed to Remote Code Execution Due to Leaked APP_KEYs on GitHub</a></h5><div> from <span>https://www.facebook.com/thehackernews</span></div></header><div>GitGuardian uncovers 260,000 leaked Laravel APP_KEYs on GitHub, exposing over 600 apps to remote code execution.</div><footer></footer></article></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
𝕂𝚞𝚋𝚒𝚔ℙ𝚒𝚡𝚎𝚕 (kubikpixel@chaos.social)'s status on Sunday, 13-Jul-2025 03:24:49 JST 𝕂𝚞𝚋𝚒𝚔ℙ𝚒𝚡𝚎𝚕
»Over 600 Laravel Apps Exposed to Remote Code Execution Due to Leaked APP_KEYs on GitHub:
Cybersecurity researchers have discovered a serious security issue that allows leaked Laravel APP_KEY's to be weaponized to gain remote code execution capabilities on hundreds of applications.«
Never store your access keys in Git, especially not in the code – do programmers need to be taught this?!??
🔓 https://thehackernews.com/2025/07/over-600-laravel-apps-exposed-to-remote.html
#cybersecurity #appkey #app_kee #laravel #github #app #remote #code #itsec #php
In conversationabout 4 months ago from chaos.socialpermalink
Attachments
1. Domain not in remote thumbnail source whitelist: blogger.googleusercontent.com
  Over 600 Laravel Apps Exposed to Remote Code Execution Due to Leaked APP_KEYs on GitHub
  from https://www.facebook.com/thehackernews
  GitGuardian uncovers 260,000 leaked Laravel APP_KEYs on GitHub, exposing over 600 apps to remote code execution.

Public

Embed Notice

HTML Code

Corresponding Notice