With #CVE_2025_29927, Next.js has now suffered its second major vulnerability in just three months, following #CVE_2024_51479.

I originally built CVE Crowd with #NextJS.

However, as the application became more complex (especially with authentication), I decided to switch to a framework I was more familiar with.

Honestly, I’m feeling a bit relieved about that right now...

#Pentesting #AppSec #InfoSec #CyberSecurity #BugBounty #Hacking #CVE #CVECrowd

I'm excited to share CVE Crowd's Top 5 Vulnerabilities from February 25!

These five stood out among the 352 CVEs actively discussed across the Fediverse.

For each CVE, I’ve included a standout post from the community.

Enjoy exploring! 👇

#Pentesting #AppSec #InfoSec #CyberSecurity #BugBounty #Hacking #CVE #CveCrowd

Mastodon's Formatting of Shortened Links May Break Your Parser (It broke mine…)

Read more below 🧵

#Coding #Programming #RegEx #InfoSec #CyberSecurity #Hacking #CVE #CveCrowd

🚨 Biggest update to CVE Crowd since launch! 🚨

More than a year after its release, cvecrowd.com is getting its most significant update yet.

Here's a quick overview of what's new:
✅ Choosable timeframes (24h, 7d, 30d)
✅ Search functionality
✅ Custom feeds

Learn more below 🧵

#Pentesting #AppSec #InfoSec #CyberSecurity #BugBounty #Hacking #CVE #CveCrowd

Wow! 119 new users joined #CVECrowd in just two days - except… they're all bots! 😂

Anyway, there’s a CAPTCHA now for sign-ups.

Holy cow! It seems there is an issue with #cups 😅

#Pentesting #AppSec #InfoSec #CyberSecurity #BugBounty #Hacking #CveCrowd

Sneaky peaky :)

#Pentesting #AppSec #InfoSec #CyberSecurity #BugBounty #Hacking #CVE #CveCrowd

#CVECrowd currently has an error during fetching posts from Mastodon’s timeline. I assume this happens due to rate limiting and a logical programming error. I hope to have time to fix the error this evening. Sorry for the inconvenience 😬

Apparently, cve.org released CVE Record Format version 5.1.0, which caused CVE Crowd to fail to retrieve some CVE metadata. This has just been fixed and made more robust to future changes.

https://www.cve.org/Media/News/item/blog/2024/05/09/CVE-Record-Format-CVE-Services-Updated

#Pentesting #AppSec #InfoSec #CyberSecurity #ThreatIntel #BugBounty #Hacking #CveCrowd

https://cve.org currently appears to have an outage, which is the cause of the missing metadata on CVE Crowd.

#Pentesting #AppSec #InfoSec #CyberSecurity #ThreatIntel #BugBounty #Hacking #CveCrowd

https://cvecrowd.com now shows #EPSS scores.

As one of the first feature requests since CVE Crowd launched, I'm happy to finally be able to fulfill it.

The score estimates the likelihood of a vulnerability being exploited in the wild.

As such, it can be used to prioritize remediation efforts.

I hope you like it!

#Pentesting #AppSec #InfoSec #CyberSecurity #ThreatIntel #BugBounty #Hacking #CveCrowd

new_score = 'CVSS'.replace('C','E').replace('V','P')

#Teaser #CVECrowd

Just made CVE info and Fediverse posts collapsible on https://cvecrowd.com.

Going live in a few minutes. Hope you like it!

#Pentesting #AppSec #InfoSec #CyberSecurity #BugBounty #Hacking #CVE #CveCrowd

Just 4 hours after its release by MITRE, CVE-2024-3094 is in the Top 10 most discussed vulnerabilities in the #Fediverse since the launch of #CveCrowd.

Not that it's surprising. A #backdoor potentially affecting #sshd. That's the stuff thrilling stories are made of.

Let's see where this leads 🚀

#Pentesting #AppSec #InfoSec #CyberSecurity #BugBounty #Hacking #CVE

https://cvecrowd.com, your favorite place to see which CVEs are currently being discussed on the Fediverse, now has 🥁🥁🥁 API ACCESS!

I'm super hyped to finally share with you what I've been working on for the past three months.

All you need to know, is in the thread below 👇

#Pentesting #AppSec #InfoSec #CyberSecurity #BugBounty #Hacking #CVE #CveCrowd

CVE Crowd Top 10: Rank 3 to 1

The year is coming to a close. Take a look back with me at which CVEs were the most popular on https://cvecrowd.com.

See information about CVEs and popular posts below 🧵

#Pentesting #AppSec #InfoSec #CyberSecurity #BugBounty #Hacking #CVE #CveCrowd

CVE Crowd Top 10: Rank 6 to 4

The year is coming to a close. Take a look back with me at which CVEs were the most popular on https://cvecrowd.com.

See information about CVEs and popular posts below 🧵

#Pentesting #AppSec #InfoSec #CyberSecurity #BugBounty #Hacking #CVE #CveCrowd

CVE Crowd Top 10: Rank 10 to 7

The year is coming to a close. Take a look back with me at which CVEs were the most popular on https://cvecrowd.com.

See information about CVEs and popular posts below 🧵

#Pentesting #AppSec #InfoSec #CyberSecurity #BugBounty #Hacking #CVE #CveCrowd

Huge update to https://cvecrowd.com - the place to go for current discussions about the latest CVEs.

I have now added the federated timeline of infosec.exchange as a data source.

This should find posts from non-Mastodon instances much more reliable than before!

Read more below 🧵

#Pentesting #AppSec #InfoSec #CyberSecurity #BugBounty #Hacking #CVE #CveCrowd