| Front-End Frameworks: When Bypassing Built-in Sanitization Might Backfire |
|
|
|
| Encoding Differentials: Why Charset Matters |
|
|
|
| Dangerous Import: SourceForge Patches Critical Code Vulnerability |
|
|
|
| OpenNMS Vulnerabilities: Securing Code against Attackers’ Unexpected Ways |
|
|
|
| Joomla: PHP Bug Introduces Multiple XSS Vulnerabilities (CVE-2024-21726) |
|
|
|
| Who are you? The Importance of Verifying Message Origins |
|
|
|
| Unzipping Dangers: OpenRefine Zip Slip Vulnerability |
|
|
|
| Source Code at Risk: Critical Code Vulnerability in CI/CD Platform TeamCity |
|
|
|
| A Twist in the Code: OpenMeetings Vulnerabilities through Unexpected Application State |
|
|
|
| Pretalx Vulnerabilities: How to get accepted at every conference |
|
|
|
| It’s a (SNMP) Trap: Gaining Code Execution on LibreNMS |
|
|
|
| Cacti: Unauthenticated Remote Code Execution |
|
|
|
| Checkmk: Remote Code Execution by Chaining Multiple Bugs (1/3) |
|
|
|
writeups.xyz
/
Stefan Schiller (@Scryh_)