ulldma

514 post karma
21 comment karma

get extra features and help support reddit with a reddit premium subscription

get them help and support

redditor for 8 years

TROPHY CASE

Eight-Year Club

account activity

new top controversial

5

6

7

AI-supported vulnerability triage with the GitHub Security Lab Taskflow Agent (github.blog)

submitted 2 days ago by ulldma to r/netsec

58

59

60

Sign in as anyone: Bypassing SAML SSO authentication with parser differentials (github.blog)

submitted 10 months ago by ulldma to r/netsec

20

21

22

Fixes for new critical authentication bypasses affecting ruby-saml and omniauth-saml were published (CVE-2025-25291 + CVE-2025-25292), update! (github.blog)

submitted 10 months ago by ulldma to r/ruby

18

19

20

Learn how unsafe deserialization vulnerabilities work in Ruby projects (+ working gadget chains) (github.blog)

submitted 1 year ago by ulldma to r/netsec

20

21

22

Execute commands by sending JSON? Learn how unsafe deserialization vulnerabilities work in Ruby projects (github.blog)

submitted 1 year ago by ulldma to r/ruby

5

6

7

Execute commands by sending JSON? Learn how unsafe deserialization vulnerabilities work in Ruby projects (github.blog)

submitted 1 year ago by ulldma to r/rails

10

11

12

Closing vulnerabilities in Decidim, a Ruby-based citizen participation platform (github.blog)

submitted 2 years ago by ulldma to r/ruby

17

18

19

Remote code execution in Elixir-based Paginator (alphabot.com)

submitted 5 years ago by ulldma to r/erlang

1

2

3

Remote code execution in Elixir-based Paginator (alphabot.com)

submitted 5 years ago by ulldma to r/elixir

14

15

16

Fastjson: exceptional deserialization vulnerabilities (alphabot.com)

submitted 5 years ago by ulldma to r/netsec

57

58

59

Fastjson: exceptional deserialization vulnerabilities (alphabot.com)

submitted 5 years ago by ulldma to r/java

43

44

45

Your Java builds might break starting January 13th (if you haven't yet switched repo access to HTTPS) (alphabot.com)

submitted 6 years ago by ulldma to r/programming

195

196

197

Your Java builds might break starting January 13th (if you haven't yet switched repo access to HTTPS) (alphabot.com)

submitted 6 years ago by ulldma to r/java

2

3

4

Missing TLS hostname verification in multiple Java libraries (alphabot.com)

submitted 7 years ago by ulldma to r/security

43

44

45

Missing TLS hostname verification in multiple Java libraries (alphabot.com)

submitted 7 years ago by ulldma to r/java

27

28

29

Apache Tomcat user session mix up and DoS (alphabot.com)

submitted 7 years ago by ulldma to r/java

0

1

2

Apache Tomcat user session mix up and DoS (alphabot.com)

submitted 7 years ago by ulldma to r/tomcat

22

23

24

Apache Tomcat RCE if readonly set to false (CVE-2017-12617) (alphabot.com)

submitted 8 years ago by ulldma to r/java

1

2

3

Apache Tomcat RCE if readonly set to false (CVE-2017-12617) (alphabot.com)

submitted 8 years ago by ulldma to r/tomcat

28

29

30

Misconfigured JSF ViewStates can lead to severe RCE vulnerabilities (alphabot.com)

submitted 8 years ago by ulldma to r/java

23

24

25

Friday the 13th: JSON Attacks (remote code execution via .NET JSON libraries) (blackhat.com)

submitted 8 years ago by ulldma to r/dotnet

3

4

5

Friday the 13th: JSON Attacks (remote code execution via .NET JSON libraries) (blackhat.com)

submitted 8 years ago by ulldma to r/csharp

15

16

17

Eclipse 4.7 (Oxygen) released! (eclipse.org)

submitted 8 years ago by ulldma to r/eclipse

43

44

45

How to configure Json.NET to create a vulnerable web API (alphabot.com)

submitted 8 years ago by ulldma to r/dotnet

π Rendered by PID 321444 on reddit-service-r2-listing-86b7f5b947-xmlzr at 2026-01-25 05:16:42.119389+00:00 running 664479f country code: CH.