-
# 每日安全资讯(2023-07-23)
- Sploitus.com Exploits RSS Feed
- [ ] [Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Python Requests exploit](https://sploitus.com/exploit?id=1ACA7…
-
A critical vulnerability in the Mastodon social networking platform may allow attackers to take over target servers.
The post [Critical Vulnerability Can Allow Takeover of Mastodon Servers](https:/…
-
If you add this to the API call:
```diff
diff --git a/llm_command_r.py b/llm_command_r.py
index 7a334cd..e49c599 100644
--- a/llm_command_r.py
+++ b/llm_command_r.py
@@ -43,6 +43,8 @@ class Cohe…
-
### Query PR
https://github.com/github/codeql/pull/13561
### Language
Python
### CVE(s) ID list
- [CVE-2023-27524](https://www.horizon3.ai/cve-2023-27524-insecure-default-configuration-…
-
# 每日安全资讯(2023-06-21)
- SecWiki News
- [ ] [SecWiki News 2023-06-20 Review](http://www.sec-wiki.com/?2023-06-20)
- 先知安全技术社区
- [ ] [js引擎检测及热部署的OpenRASP学习](https://xz.aliyun.com/t/12613)
- HackerOne…
-
The current ASVS items under category 2 don't explicitly address user enumeration vulnerabilities that arise from different responses given by the application during authentication attempts (e.g., "Th…
-
# 每日安全资讯(2023-07-05)
- HackerOne Hacker Activity
- [ ] [MetaMask Browser URL and Transaction Origin Spoofing - Metamask wallet Android & Metamask wallet iOS](https://hackerone.com/reports/1751333)
…
-
# 每日安全资讯(2023-07-06)
- HackerOne Hacker Activity
- [ ] [Improper Authentication inside the Rockstar Games Launcher which leads to Account takeover to some extend](https://hackerone.com/reports/1442…
-
# 每日安全资讯(2023-06-26)
- Sec-News 安全文摘
- [ ] [Google Cloud Shell Command Injection](https://govuln.com/news/url/8njp)
- [ ] [[ GCP 2022 ] Few bugs in the google cloud shell](https://govuln.com/news…
-
### Query PR
https://github.com/github/codeql/pull/12301
https://github.com/github/codeql/pull/13431
### Language
Ruby
### CVE(s) ID list
- [CVE-2022-32224](https://github.com/advisori…