|
You are here |
taeluralexis.com | ||
| | | | |
www.modzero.com
|
|
| | | | | [AI summary] The provided text outlines several critical vulnerabilities in Cisco IP phones, which can be exploited without authentication to fully compromise the devices. These vulnerabilities include buffer overflow, file upload issues, path traversal, and CSRF token validation flaws. The advisory details the potential impact, including data theft, call fraud, and the use of phones as attack vectors. | |
| | | | |
xvnpw.github.io
|
|
| | | | | Server-Side Request Forgery (SSRF) vulnerabilities have been around for a long time, and they still pose a significant threat to web applications, so much so this kind of vulnerability has been included in OWASP TOP 10. This time I will explain how to mitigate SSRF vulnerability in Go applications. | |
| | | | |
introvertmac.wordpress.com
|
|
| | | | | During my early years in bug bounty programs and security research, I observed firsthand how crypto projects-even those with robust blockchain protocols-often crumble due to overlooked Web2 vulnerabilities. In my 2020 blog post, Common Security Issues with Crypto Websites and APIs, I highlighted prevalent issues such as injection attacks, broken authentication, and insufficient authorization. At... | |
| | | | |
shibumi.dev
|
|
| | | The personal blog of Christian Rebischke | ||