-
# 每日安全资讯(2023-08-25)
- HackerOne Hacker Activity
- [ ] [Cache Poisoning allows redirection on JS files](https://hackerone.com/reports/1795197)
- [ ] [An Attacker Can Flag Draft Job Posts And Can …
-
# 每日安全资讯(2023-06-21)
- SecWiki News
- [ ] [SecWiki News 2023-06-20 Review](http://www.sec-wiki.com/?2023-06-20)
- 先知安全技术社区
- [ ] [js引擎检测及热部署的OpenRASP学习](https://xz.aliyun.com/t/12613)
- HackerOne…
-
### Imported from AB/Connect bitbucket: https://bitbucket.org/openid/connect/issues/1401
### Original Reporter: tlodderstedt
The current cross device flow works fine, however it forces the RP to mak…
-
# 每日安全资讯(2023-08-02)
- HackerOne Hacker Activity
- [ ] [XMLRPC does not limit deserializable classes.](https://hackerone.com/reports/1189419)
- [ ] [Steam Deck Single Click Root Remote Code Execu…
-
Hat tip @simontegg
http://www.wsj.com/articles/the-future-of-the-internet-is-flow-1443796858
I maybe 10% believe it, I believe some of the comments more. But it certainly fits the theme here...
-
# 每日安全资讯(2023-08-23)
- HackerOne Hacker Activity
- [ ] [Bypass of #2035332 RXSS at image.hackerone.live via the `url` parameter](https://hackerone.com/reports/2106708)
- [ ] [[WiiU/Switch] nullpt…
-
https://github.com/zloirock/core-js/blob/master/docs/2023-02-14-so-whats-next.md
Politics = ban.
-
# 每日安全资讯(2023-07-18)
- HackerOne Hacker Activity
- [ ] [robots.txt file](https://hackerone.com/reports/2029217)
- [ ] [An IDOR that can lead to enumeration of a user and disclosure of email and p…
-
## User story
ETQ communicant DiaLog je publie des articles sur DiaLog ou sujets connexes 1 à 2 fois par mois au moins jusqu'aux JO afin d'étendre la visibilité de DiaLog
ETQ visiteur du site …
-
# 每日安全资讯(2023-06-17)
- HackerOne Hacker Activity
- [ ] [Logging in without knowing credentials after logged out action](https://hackerone.com/reports/1971610)
- [ ] [CSRF with logout action](http…