@crowdsec.bsky.social on Bluesky

JavaScript RequiredThis is a heavily interactive web application, and JavaScript is required. Simple HTML interfaces are possible, but that is not what this is. Learn more about Bluesky at bsky.social and atproto.com.

Post

CrowdSec

crowdsec.bsky.social

did:plc:pjwcnpqzk7uffjo2jnzfwat7

ℹ️ About the exploit: CVE-2025-52970 "FortMajeure" is an auth bypass in FortiWeb. Flawed cookie parsing lets attackers manipulate the "Era" parameter to gain full admin access. Affects versions 7.6.3 and earlier. (🧵3/6)

2025-09-11T12:50:37.867Z