-
Hi There,
I have searched the opensuse wiki and the forums for TUF but i couldnt find anything about it, can you test it against zypper and share the results? (maybe add it to your test suite as we…
-
We had a discussion of request forgery attacks for the QUIC protocol: if a node can convince a peer to send packets to unsuspecting addresses, that can be exploited in hard to predict ways. The defens…
-
## **Problem:**
In its current state, the HTTP server lacks essential security features that are critical to protecting against various types of attacks and vulnerabilities. As we aim to make this …
-
Brim listens on port 9867 by default, without authentication, without checking host, you can use dns rebinding attack to obtain data in brim
## Attack example
The victim opens brim and imports p…
-
We should add a SECURITY.md exposing all privacy/security issues while implementing a lightning client and requirement to mitigate them.
To mention:
* `payment_secret` [secure randomness](https://…
-
Hacktoberfest is here! And we’re excited to invite you to explore and contribute to our **Cloudinary SDKs** on GitHub!
Whether you’re a seasoned contributor or new to Open Source, this is a great o…
-
In light of the `xz` attack:
* https://arstechnica.com/security/2024/04/what-we-know-about-the-xz-utils-backdoor-that-almost-infected-the-world/
audit the opentelemetry-cpp repository for possib…
-
-
Please enable cookies.\n\n# Sorry, you have been blocked\n\n## You are unable to access gitbook.io\n\n## Why have I been blocked?\n\nThis website is using a security service to protect itself from onl…
-
## Security Vulnerability: Client-Side Injection in Password Field
### Issue Description:
The password field currently allows the input of special characters (e.g., ``, ``), which can lead to client-…