-
@thisismissem on [FediDevs Matrix](https://matrix.to/#/!uHqAjmOtrLtidOiczC:matrix.org/$gP_zRwMROUZuEus-xUCSufdzWvWow-EPeQizWWUn2OQ?via=matrix.org&via=mozilla.org&via=gemeinsam.jetzt):
> The number …
-
there is an issue in this template with the FQDN variable.
https://github.com/projectdiscovery/nuclei-templates/blob/main/dast/vulnerabilities/ssrf/response-ssrf.yaml
![FQDN](https://github.com/…
-
Client function `CheckRedirect` is used to protect against some forms of Server-side request forgery (SSRF) / Cross-site request forgery (CSRF) attacks. It would be, however, more convenient to have s…
-
> Never was anything great achieved without danger.
###### 0x01 SSRF
---
* `SSRF`
* `Server-Side Request Forgery` 服务端请求伪造
* 一种由攻击者构造形成由服务端发起请求的安全漏洞
* 一般情况下,`SSRF` 攻击的目标是从外网无法访问的内部系统
…
-
### Gogs version
v0.12.9
### Git version
- Server: 2.24.1
- Client: 2.24.1
### Operating system
MacOS 10.15.4
### Database
SQLite3
### Describe the bug
in changelog of 0.12.9, https://…
-
We need to protect the server from being missued, e.g. in an amplification attack.
Currently I have no idea how to do that, appart from IP logging and blocking to many requests from one IP which coul…
-
Hi!
The supplied proxies:
- https://github.com/greenido/backbone-bira/blob/master/test-page/prox.php
- https://github.com/greenido/backbone-bira/blob/master/test-page/proxy.php
- https://githu…
-
**`Severity Threshold: 🔵 MEDIUM`**
# 85 Potential vulnerability sources found within this repo
| `🔴 CRITICAL` | `🟡 HIGH` | `🔵 MEDIUM` | `⚪ LOW` |
|-|-|-|-|
| 0 | 28 | 57 | 0 |
**`ID: 01J53YX5GD6N7…
-
Axios 1.7.2 allows SSRF via unexpected behavior where requests for path-relative URLs get processed as protocol-relative URLs.
-
**Summary**
I was playing with OpenHands and noticed that agent makes suboptimal decisions when using `edit_file_by_replace`. [Here](https://gist.github.com/a6kme/230f6cd74f0567d18edc8d98b9d675dd) is…
a6kme updated
2 weeks ago