30 secondes de tichodrome qui explore les murs de la Bastille

books.infosec.exchange is down for a bit. The upgrade from 0.8.3 to 0.8.4 went less than smoothly. Bookwyrm is quickly becoming my least favorite piece of software to upgrade. Every single upgrade is full on hand to hand combat lately.

Edit: I don’t know when it will be back up. I’ve opened a GitHub issue for help, but it could be a while.

New geolocation-based XSS vectors just landed in our XSS cheat sheet. Huge thanks to AmirMohammad Safari for the great submission.

https://portswigger.net/web-security/cross-site-scripting/cheat-sheet#onpromptaction

TFW I’m talking to a really old guy at the gym and learn that he is younger than me 💀

‼️ Critical Pre-Auth RCE Vulnerability in BeyondTrust Remote Support & PRA Exposes Thousands of Instances (CVE-2026-1731)

https://darkwebinformer.com/critical-pre-auth-rce-vulnerability-in-beyondtrust-remote-support-pra-allegedly-exposes-thousands-of-instances-cve-2026-1731/

BOOST OR QUOTE THIS!

Trying to find out how many people see a post without hashtags. Thank you!

(edit: Why, you ask? Long thread coming up … 1/7)

Do not travel to the USofA, part XXXIV:

- doing everything right is not enough
- white skin does not protect you
- detention may mean a cell shared with 70 people, fighting over food, without medical supplies
- your signature will get forged if you refuse
- judge orders for release on bail are ignored

https://www.theguardian.com/us-news/2026/feb/09/irish-man-seamus-culleton-ice-detention