-
# 每日安全资讯(2023-08-25)
- HackerOne Hacker Activity
- [ ] [Cache Poisoning allows redirection on JS files](https://hackerone.com/reports/1795197)
- [ ] [An Attacker Can Flag Draft Job Posts And Can …
-
# 每日安全资讯(2023-08-04)
- 90Sec - 最新话题
- [ ] [分享一篇不错的.NET Webshell免杀文章](https://forum.90sec.com/t/topic/2284)
- HackerOne Hacker Activity
- [ ] [Limited Disclosure: Employee credentials checked in t…
-
# 每日安全资讯(2023-07-29)
- SecWiki News
- [ ] [SecWiki News 2023-07-28 Review](http://www.sec-wiki.com/?2023-07-28)
- HackerOne Hacker Activity
- [ ] [Content Security Policy is only active for HTML …
-
# 每日安全资讯(2023-07-22)
- HackerOne Hacker Activity
- [ ] [Password reset endpoint is not brute force protected](https://hackerone.com/reports/1987062)
- 先知安全技术社区
- [ ] [SCA技术进阶系列(三):浅谈二进制SCA在数字供应链安…
-
#### Which domain(s) should be blocked?
fdrc-gov.org
#### Why should the domain(s) be blocked?
Scam. Signs: fake government site, recovery scam
https://www.reddit.com/r/Scams/comments/12…
-
**What would you like to add or change?**:
I think users should have the ability to block specific Top Level Domains (TLDs) in addition to the feature Portmaster has to block unofficial TLDs. Obvio…
-
### Which AdBlocker/DNS cloud service do you use?
Other
### Other
-
### Which blocklist(s) do you use?
Personal
### Which domain(s) should be unblocked?
600vekil.com
### Why should the domain(…
-
# 每日安全资讯(2023-06-15)
- HackerOne Hacker Activity
- [ ] [internal dev tokens disclosure](https://hackerone.com/reports/1940443)
- 先知安全技术社区
- [ ] [dedeCMS后台RCE](https://xz.aliyun.com/t/12609)
- […
-
* **Electron-Builder Version**: 22.14.4
* **Node Version**: 14.17.6
* **Electron Version**: 15.1.2
* **Electron Type (current, beta, nightly)**: current
* **Electron-updater**: 4.3.9
* **Target**…
-
# 每日安全资讯(2023-08-15)
- HackerOne Hacker Activity
- [ ] [HTML injection on newsroom.snap.com/* via search?q=1](https://hackerone.com/reports/2018615)
- [ ] [Path traversal allows tricking the Talk…