@thecyberchanakya
Digital defense, inspired by ancient strategy.
Nothing here yet.
Nothing here yet.
TL;DR What: An unauthenticated path traversal in Sonatype Nexus Repository 3 lets anyone craft a URL that makes Nexus return any file on the server—even outside the app folder. No login required. Fixed in 3.68.1. Affected: All Nexus Repository 3.x ...

TL;DR What: A critical bug in Adobe Commerce / Magento Open Source that lets an attacker take over customer accounts via the Commerce API (no login or clicks needed). Severity: CVSS 9.1 — High impact to confidentiality and integrity; no user intera...
