-
This issue will guide us trough the growing backlog, user requests and releases.
Note: [This is project](https://github.com/guidesmiths/cybersecurity-handbook/projects/1) that helps us to follow t…
-
The security and privacy considerations section needs to be reviewed and updated.
See also similar issues for other deliverables; we need to also decide what goes where:
* https://github.com/w3c/…
-
# 每日安全资讯(2023-06-03)
- HackerOne Hacker Activity
- [ ] [IDOR in family pairing API](https://hackerone.com/reports/1586950)
- [ ] [Reflected Cross-site Scripting (XSS) at https://www.tiktok.com/](…
-
> Authorization: Why are there 6 of 10 issues related to authorization. 1, 3, 4, 5, 8, and 10 are all problems with authorization. Can we combine these? It doesn't make sense to break these out and bu…
-
I'm trying to configure fluentd to send kubernetes log from vsphere 7 tanzukubernetescluster to loginsight (8.1.1).
I was able to configure it and send logs but I'm not sure if there's any way to get…
-
Review logs regarding security hotspot note https://sonarcloud.io/project/security_hotspots?id=ITISFoundation_osparc-simcore&pullRequest=3147&hotspots=AYGpcPQIVRfTUi-N8-IQ
-
We should also include a section about the type of vulnerability affecting the javascript.
example XSS or RCE in case of node.js apps etc.
-
I have a question regarding requirement [2.2.2](https://github.com/OWASP/ASVS/blob/master/4.0/en/0x11-V2-Authentication.md#v22-general-authenticator-security). Here it says:
> Verify that the …
-
# 每日安全资讯(2023-08-09)
- 喵喵喵喵
- [ ] [Download - HackTheBox](https://darkwing.moe/2023/08/08/Download-HackTheBox/)
- 先知安全技术社区
- [ ] [WP Ultimate CSV Importer远程代码执行分析-CVE-2023-4142](https://xz.aliyun…
-
* Package Manager: npm
* Vulnerable module: tinymce
* Introduced through: juice-shop@12.3.0 and tinymce@4.1.0
### Detailed paths
* _Introduced through_: juice-shop@12.3.0 › tinymce@4.1.0
# Overview
[t…