-
Fixed : No error message is shown while updating the username from the admin panel
Fixed : Security issues are resolved in the profile avatar settings.
Fixed : Security vulnerability issue in the …
-
I got this Mail.
> Vincent highground.ou@gmail.com über sendgrid.net | Vincent highground.ou@gmail.com über sendgrid.net | 19:11 (vor 2 Stunden) | |
>
>
>
> Vincent highground.ou@g…
-
All of every user’s posts include a JSON field “application” which tips off any potential adversaries what software the user is running. This needless disclosure can be used to plan an attack.
This…
-
### Query PR
https://github.com/github/codeql/pull/14302
### Language
Javascript
### CVE(s) ID list
- [CVE-2023-4898](https://nvd.nist.gov/vuln/detail/CVE-2023-4898)
- [CVE-2023-4899](https://nv…
am0o0 updated
10 months ago
-
A stated primary goal of FedCM is to preserve privacy. However, as currently designed it exposes to the IdP a list of every RP the user logs in to. This information is primarily leaked by sending the …
-
### Open Source Project name
reNgine
### What is your project?
reNgine is the go-to web application reconnaissance suite designed to simplify and streamline the reconnaissance process for security …
-
Location: [Libera.chat, #monero-research-lab](https://libera.chat/) | [Matrix](https://matrix.to/#/#monero-research-lab:monero.social?via=matrix.org&via=monero.social)
[Join the Monero Matrix serve…
-
I see some of the social media platforms need to use the client secret that visible for end users in the example. I think it doesn't make sense to use the client secret this way and I consider that as…
-
# 每日安全资讯(2023-06-30)
- paper - Last paper
- [ ] [GeoServer SQL 注入漏洞分析(CVE-2023-25157)](https://paper.seebug.org/2087/)
- Sploitus.com Exploits RSS Feed
- [ ] [Exploit for Code Injection in Vmware…
-
貼吧活動:(請查閱 [SARS-CoV-2 Timeline by 2020.02.21](https://github.com/agorahub/_meta/blob/agoran/theagora/sari/Memorandum_2020-02-21_SARS-CoV-2-Timeline_Nathan.pdf?raw=true), by Nathan :cloud: )
- Colla…