-
# 每日安全资讯(2023-06-08)
- HackerOne Hacker Activity
- [ ] [Arbitrary write in the application's data folder and arbitrary read of server's replies from 3rd party apps.](https://hackerone.com/reports/1…
-
While running owtf, the process stops with the error:
Aborted by Framework: Files required for SSL MiTM are missing. Please run the install script.
## Expected Behavior
The process star…
-
Hello !
I have encountered an error during gohan vm provision, I've noticed that you asked the issuer of issue 20 to put more information ( using the --debug flag during provision ) so here's my out …
-
Dear Sir,
Please note BLACK ARCH Linux is better than KALI LINUX but lacks many Go, Rust code based web application penetration, exploitation tools. I quit KALI LINUX and Shifted to BLACK ARCH Linu…
-
Hi, I want to integrate ArcherySec with Burp Suite Enterprise which both of them locate on-prem. These two servers can reach each other. I can reach Burp's API page and all infos are correct. Once I w…
-
```js
for (const el of document.querySelectorAll('*')) {
const attributes = [...el.attributes].filter(attr => '@click' === attr.name);
if (attributes.length)
attributes[0].value = 'alert("…
-
During a recent round of pentesting, I found a reflected Cross Site Scripting bug in the /status endpoint. Injecting javascript just after the /status endpoint e.g. /status>alert(1) will trigger a Jav…
-
**Describe the bug**
After installing all the tools and dependencies via install.sh, when i am trying to run reconftw.sh file, its showing only usage description only no matter what switches/options …
-
-
It's currently possible to bring a brute forcing attack to globaleaks users.
The features to be properly implemented we should follow the guideline of the document Application Security Design and Det…