Research Worth Reading Week 51/2024

Published: 23 Dec 2024

It's starting to look a lot like Christ^WHackMas

🔐 Another JWT Algorithm Confusion Vulnerability: CVE-2024-54150

Why shouldn't I share my own content? Here's a shameless plug for my article on the JWT Algorithm Confusion Vulnerability I found in a C library.

🐘 How an Obscure PHP Footgun Led to RCE in Craft CMS

Check out this excellent write-up by the Assenote team on how an obscure PHP footgun led to RCE in Craft CMS.

📚 AppSec eZine #566

The latest edition of AppSec eZine is here! Read issue #566.

Photo of PentesterLab
Written by PentesterLab
The platform to learn web hacking and security code review

Join the PentesterLab's Newsletter

Subscribe to get our latest content by email.

    We won't send you spam. Unsubscribe at any time.