SSRF to AWS file read
2021-09-17 10:04:08  •  阅读 0 •  点我收藏   
Session Fixiation allow attacker to create new evil workspace without being logged in [ Insecure Session management ]
2021-09-17 03:37:27  •  阅读 0 •  点我收藏   
[3] Bypassing IP Based Rate Limit Blocking leads to rate limit bypass in Courier Login Panel
2021-09-17 03:37:27  •  阅读 0 •  点我收藏   
Bypassing Rate limit for forgot password by using different ip addresses
2021-09-16 07:48:28  •  阅读 0 •  点我收藏   
CVE-2021-22945: UAF and double-free in MQTT sending
2021-09-16 01:17:22  •  阅读 0 •  点我收藏   
Stored XSS in main page of a project caused by arbitrary script payload in group "Default initial branch name"
2021-09-16 01:17:22  •  阅读 0 •  点我收藏   
Use of a Broken or Risky Cryptographic Algorithm
2021-09-15 23:41:15  •  阅读 0 •  点我收藏   
Webview address bar spoofing in LINE client for iOS
2021-09-15 12:05:30  •  阅读 0 •  点我收藏   
[Java] CWE-079: Query to detect XSS with JavaServer Faces (JSF)
2021-09-15 12:05:30  •  阅读 0 •  点我收藏   
CSRF in Account Deletion feature (https://www.flickr.com/account/delete)
2021-09-15 10:27:13  •  阅读 0 •  点我收藏   
[Java]: Add XXE sinks
2021-09-15 07:14:00  •  阅读 0 •  点我收藏   
Buffer overrun in Steam SILK voice decoder
2021-09-14 04:18:39  •  阅读 0 •  点我收藏   
No Rate Limit On Regenerate Password on Portswigger
2021-09-14 00:33:33  •  阅读 0 •  点我收藏   
Privilege Escalation leading to post in channel without having privilege
2021-09-13 17:05:44  •  阅读 0 •  点我收藏   
Hardware Wallets Do Not Check Unlock TIme
2021-09-12 18:53:46  •  阅读 0 •  点我收藏   
Unix time unlock_time values have dangerous validation rules enabling a number of exploits
2021-09-12 18:53:42  •  阅读 0 •  点我收藏   
Create free Shopify application credits.
2021-09-11 13:41:19  •  阅读 0 •  点我收藏   
Built-in TLS module unexpectedly treats "rejectUnauthorized: undefined" as "rejectUnauthorized: false", disabling all certificate validation
2021-09-11 13:41:19  •  阅读 0 •  点我收藏   
Improper handling of untypical characters in domain names
2021-09-11 13:41:19  •  阅读 0 •  点我收藏   
[play.mtn.co.za] Application level DoS via xmlrpc.php
2021-09-11 13:41:19  •  阅读 0 •  点我收藏   
Stored XSS on top.mail.ru
2021-09-11 13:41:19  •  阅读 0 •  点我收藏   
SQL injection located in `███` in POST param `████████`
2021-09-10 07:10:40  •  阅读 0 •  点我收藏   
System Error Reveals SQL Information
2021-09-10 07:10:40  •  阅读 0 •  点我收藏   
Sensitive data exposure via https://███████/jira//secure/QueryComponent!Default.jspa - CVE-2020-14179
2021-09-10 07:10:40  •  阅读 0 •  点我收藏   
XSS due to CVE-2020-3580 [███]
2021-09-10 07:10:40  •  阅读 0 •  点我收藏   
XSS due to CVE-2020-3580 [██████]
2021-09-10 07:10:40  •  阅读 0 •  点我收藏   
Subdomain takeover of ███
2021-09-10 07:10:40  •  阅读 0 •  点我收藏   
link.avito.ru - Bypass of restrictions on external links.
2021-09-10 04:01:18  •  阅读 0 •  点我收藏   
SQL injection [futexpert.mtngbissau.com]
2021-09-09 23:09:52  •  阅读 0 •  点我收藏   
blind sql on [selfcare.mtn.com.af]
2021-09-09 23:09:52  •  阅读 0 •  点我收藏