Doyensec
@doyensec.bsky.social
Doyensec works at the intersection of software development and offensive engineering. We discover vulnerabilities others cannot, and help mitigate the risk.
If you want, you can also RSVP via email at [email protected]
October 14, 2025 at 4:12 PM
If you want, you can also RSVP via email at [email protected]
🚨Security Advisory🚨
Systemic SQL Injection vulnerability in pREST.
Details from our Viktor Chuchurski's bypassing the initial fix were also published:
github.com/prest/prest/...
#Doyensec #AppSec #Security #PostgreSQL #SQLInjection
Systemic SQL Injection vulnerability in pREST.
Details from our Viktor Chuchurski's bypassing the initial fix were also published:
github.com/prest/prest/...
#Doyensec #AppSec #Security #PostgreSQL #SQLInjection
Incomplete fix for GHSA-p46v-f2x8-qp98 · Issue #937 · prest/prest
This is a followup on GHSA-p46v-f2x8-qp98. I spent some time looking into the mitigations introduced. While some of them perform adequate validation of user-controlled input, there are instances wh...
github.com
September 19, 2025 at 2:52 PM
🚨Security Advisory🚨
Systemic SQL Injection vulnerability in pREST.
Details from our Viktor Chuchurski's bypassing the initial fix were also published:
github.com/prest/prest/...
#Doyensec #AppSec #Security #PostgreSQL #SQLInjection
Systemic SQL Injection vulnerability in pREST.
Details from our Viktor Chuchurski's bypassing the initial fix were also published:
github.com/prest/prest/...
#Doyensec #AppSec #Security #PostgreSQL #SQLInjection