PSA: Larian has several open positions (in Belgium). Scroll to the middle of the page https://larian.com/

EUVD-2025-203303 CVE-2025-14665 GHSA-r22q-wf27-426v

A security flaw has been discovered in Tenda WH450 1.0.0.18. Impacted is an unknown function of the file /goform/DhcpListClient of the component HTTP Request Handler. The manipulation of the argument page results in stack-based buffer overflow. The attack can be executed remotely. The exploit has been released to the public and may be exploited.

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P => 9.3

Published: Dec 14, 2025, 3:02:09 PM
Updated: Dec 14, 2025, 3:02:09 PM

https://nvd.nist.gov/vuln/detail/CVE-2025-14665
https://github.com/z472421519/BinaryAudit/blob/main/PoC/BOF/Tenda_WH450/DhcpListClient/DhcpListClient.md
https://github.com/z472421519/BinaryAudit/blob/main/PoC/BOF/Tenda_WH450/DhcpListClient/DhcpListClient.md#reproduce
https://vuldb.com/?ctiid.336397
https://vuldb.com/?id.336397
https://vuldb.com/?submit.714400
https://www.tenda.com.cn
https://www.tenda.com.cn/

Evil Netanyahu forced to retract initial claim when he learned hero of
Australian attack on Jewish gathering was a Muslim

Attention, elevated activities detected targeting Open Asset Import Library Assimp (CVE-2025-6119) https://vuldb.com/?ctiid.312588

@neurovagrant Some of the related search results:

- https://curiositystream.com/
- https://www.rottentomatoes.com/browse/movies_at_home/genres:documentary~sort:popular
- https://topdocumentaryfilms.com/
- https://docplus.com/

Documentary fans - other than PBS and Youtube, what’s your favorite streaming source for documentaries?

Willing to pay reasonable streaming fee, doesn’t have to be free.

Should You Trust Your VPN Location? - https://ipinfo.io/blog/vpn-location-mismatch-report

17 out of 20 popular VPNs exit traffic from different countries than they claim. Dig into what that means and why it matters in our VPN report.

#twit

"The data points to a troubling trend — America’s gambling boom is driving more people into financial and emotional distress, with young men at the epicenter."

https://www.axios.com/2025/12/14/sports-betting-gambling-young-men-crisis

@jerry Help! The internet has fallen. It can't get up.

updated the homeserver to NisOs 25.11.1335.09eb77e94fa2 (Xantusia)

no issues. also added monitoring to it.

new part of the blog series and updated published configs coming soon!

Yet another copyright infringement. And neither Microsoft nor any of the owners of previously "borrowed" IPs, including Sony and Nintendo, can lift a finger to stop it.

Snopes Fact Check: White House really posted image of Trump as Minecraft character https://www.snopes.com/fact-check/trump-minecraft-ai-image/ @snopes #copyright #Microsoft #Minecraft

These kinds of crazy trends are the reason TikTok should be monitored, now that all the grovelling is about to give it a new lease on life.

"The prank involves using AI image generators to create realistic photos depicting fake homeless people appearing to be at someone’s door or inside their home."

"Today’s cybercrimes — sextortion, fraud, deepnudes, cyberbullying — are not appearing out of nowhere."

"Their perpetrators are yesterday’s teenagers: they were taught to code, create and publish online, but rarely to think about the human consequences of their actions."

The Conversation: The ‘AI Homeless Man Prank’ reveals a crisis in AI education https://theconversation.com/the-ai-homeless-man-prank-reveals-a-crisis-in-ai-education-270623 @TheConversationUS #education #TikTok #cybercrime

The Verge: AI image generators are getting better by getting worse https://www.theverge.com/column/843883/ai-image-generators-better-worse @verge