-
One of our clients (foobar.com) is calling our IDSRV (example.com) with an endsesssion request from an iframe. The response contains XFO: SAMEORIGIN. They would like us to remove this.
Assuming tha…
-
bundle ����install --without development test heroku�
leads to a 'fatal error'
Here a record of command and infos asked:
Script started on Tue Jan 8 20:20:07 2013
mercredia@jeudi:/home/mercredia/d…
-
Hi,
I used travis and was logged into maybe a week ago but two days ago I wanted to add a repository and noticed I was logged out and now check I click Login it show "Signing in..." and reload the pag…
-
Hey friends, I ran OWASP ZAP on 18f.gsa.gov, a federalist site, and it flagged a few things for us that are related to HTTP headers. I chatted with @jeremiak and we agreed that because this, and all F…
-
I have an iframe that points to a server then within that iframe it points to another server. That second iframe throws the error:
"[blocked] The page at [...] ran insecure content from [...]."
I rea…
-
Zotonic doesn't have clickjacking protection.
https://www.owasp.org/index.php/Clickjacking
It would be nice if we have a feature where we can enable this. This might be important for admin consoles …
-
I just installed w3af from apt-get and got following:
```
$ sudo apt-get install w3af -y
$ w3af_console
w3af>>> profiles
w3af/profiles>>> use OWASP_TOP10
The profile references the following missing…
-
Possible to escape message element by setting style `position:fixed`. The end results range from annoyance from blocked navigation elements, to possible click jacking.
Simple POC; send email with con…
-
When running many tests using nunit3-console.exe it would be useful to see how many tests have been run and, ideally, how many remain to be run to get a rough idea of how far along the testing process…
-
With the way Mumbad City Grid is currently implemented, it does not correctly interact with the runner jacking out.
MCG's trigger condition is "when the runner passes a piece of ice", which occurs be…
Quarg updated
8 years ago