-
We are in the process of applying for a grant with Flow.
To submit the grant application, we need to fill out some information about the team and the project. So we need
- A biography of each member…
-
# 每日安全资讯(2023-06-14)
- SecWiki News
- [ ] [SecWiki News 2023-06-13 Review](http://www.sec-wiki.com/?2023-06-13)
- HackerOne Hacker Activity
- [ ] [[CPP]: Add query for CWE-805: Buffer Access with…
-
Python **requests** library changes URL in some situations.
it removes some parameters
for example
`
url = "https://www.example.com/test?"
`
it removes `?` in the request when I see it in Burp p…
-
# 每日安全资讯(2023-07-30)
- SecWiki News
- [ ] [SecWiki News 2023-07-29 Review](http://www.sec-wiki.com/?2023-07-29)
- unSafe.sh - 不安全
- [ ] [Linux安装lolcat彩虹特效工具](https://buaq.net/go-173205.html)
- …
-
# 每日安全资讯(2023-08-22)
- 先知安全技术社区
- [ ] [BossCms V2.2 代码审计](https://xz.aliyun.com/t/12796)
- HackerOne Hacker Activity
- [ ] [insecure storage of information, you can view any file uploaded to the …
-
I tried to create a basic plugin to base64-code the messages, but I just got Python exceptions.
I based it on your "Customizing the REPL UI" example at https://blog.doyensec.com/2023/07/18/streamli…
-
# 每日安全资讯(2023-06-13)
- SecWiki News
- [ ] [SecWiki News 2023-06-12 Review](http://www.sec-wiki.com/?2023-06-12)
- 安全脉搏
- [ ] [PyPI恶意存储库fshec2攻击分析](https://www.secpulse.com/archives/201724.html)
…
-
# 每日安全资讯(2023-08-15)
- HackerOne Hacker Activity
- [ ] [HTML injection on newsroom.snap.com/* via search?q=1](https://hackerone.com/reports/2018615)
- [ ] [Path traversal allows tricking the Talk…
-
# 每日安全资讯(2023-06-15)
- HackerOne Hacker Activity
- [ ] [internal dev tokens disclosure](https://hackerone.com/reports/1940443)
- 先知安全技术社区
- [ ] [dedeCMS后台RCE](https://xz.aliyun.com/t/12609)
- […
-
# 每日安全资讯(2023-07-19)
- HackerOne Hacker Activity
- [ ] [RDoc::MethodAttr is vulnerable to Regular Expression Denial of Service (ReDoS)](https://hackerone.com/reports/1378706)
- [ ] [Arbitrary fil…