- ------------------------------------------------------------------------- Debian Security Advisory DSA-5307-1 [email protected] https://www.debian.org/security/ ...
Continue Reading30 декабря, 2022
ZeddYu Lu discovered that the FTP client of Apache Commons Net, a Java client API for basic Internet protocols, trusts the host from PASV response by default. A malicious server can redirect the Commo ...
Continue Reading30 декабря, 2022
ZeddYu Lu discovered that the FTP client of Apache Commons Net, a Java client API for basic Internet protocols, trusts the host from PASV response by default. A malicious server can redirect the Commo ...
Continue Reading30 декабря, 2022
# Description Cross-Site Request Forgery (CSRF) is an attack that forces authenticated users to submit a request to a Web application against which they are currently authenticated. CSRF attacks explo ...
Continue Reading29 декабря, 2022
# Description An attacker can be post malicious content to other user's memos page via POST request, attacker just add an `creatorID` into body request and send it with Burpsuite **Here is video poc* ...
Continue Reading29 декабря, 2022
# Description I have discovered in Memos a CSRF Vulnerability (in Create a Memo Functionality (POST /api/memo). I have identified that it is possible to manipulate the actions of authenticated users b ...
Continue Reading29 декабря, 2022
# Description Cross-Site Request Forgery (CSRF) is an attack that forces authenticated users to submit a request to a Web application against which they are currently authenticated. CSRF attacks explo ...
Continue Reading29 декабря, 2022
# Description Cross-Site Request Forgery (CSRF) is an attack that forces authenticated users to submit a request to a Web application against which they are currently authenticated. CSRF attacks explo ...
Continue Reading29 декабря, 2022
Back to Main