Link on Github --> https://github.com/Nieuport/news-and-links/blob/gh-pages/docs/2026.01.29.md

The Story of a Perfect Exploit Chain: Six Bugs That Looked Harmless Until They Became Pre-Auth RCE in a Security Appliance - https://mehmetince.net/the-story-of-a-perfect-exploit-chain-six-bugs-that-looked-harmless-until-they-became-pre-auth-rce-in-a-security-appliance/

Ticket to Shell: Exploiting PHP Filters and CNEXT in osTicket (CVE-2026-22200) - https://horizon3.ai/attack-research/attack-blogs/ticket-to-shell-exploiting-php-filters-and-cnext-in-osticket-cve-2026-22200/

The new recon technique nobody thought about - https://blog.profundis.io/blog/favicon-similarity-search/

Developing An AI Vishing Model For £37.49 - https://http418infosec.com/developing-an-ai-vishing-model-for-37-49

NT OS Kernel Information Disclosure Vulnerability – CVE-2025-53136 - https://www.crowdfense.com/nt-os-kernel-information-disclosure-vulnerability-cve-2025-53136/

#informatyka