Explore >> Select a destination
|
You are here 
|
evilpacket.net | ||
| | | | |
citizen428.net
|
|
| | | | | bundler-audit is a small utility which can check your Gemfiles contents against the Ruby Advisory Database. You can simply run it via bundle audit and it will report insecure gem sources as well as library versions that have known vulnerabilities: $ bundle audit Insecure Source URI found: git://github.com/compass/compass-rails.git Insecure Source URI found: git://github.com/sinatra/sinatra.git Name: nokogiri Version: 1.8.2 Advisory: CVE-2018-8048 Criticality: Unknown URL: https://github.com/sparklemotion... | |
| | | | |
swordbytes.com
|
|
| | | | | SwordBytes researchers have identified an Unauthenticated Remote Code Execution (RCE) vulnerability in Overwolf's Client Application by abusing a Reflected Cross-Site Scripting (XSS) issue present in the "overwolfstore://" URL handler. This vulnerability allows remote unauthenticated attackers to execute arbitrary commands on the underlying operating system that hosts Overwolf's Client Application. | |
| | | | |
www.nodejs-security.com
|
|
| | | | | Dive into a critical vulnerability in a popular npm package called `nossrf`. This package aims to shield applications from Server-Side Request Forgery (SSRF) attacks by validating user-provided URLs. However, a clever bypass technique renders these safeguards ineffective. Let's dissect the issue and understand how to stay protected. | |
| | | | |
nodogmablog.bryanhogan.net
|
|
| | | A simple example of running Postgres in Docker with a password set, and a port exposed. | ||
