Outer Web | Explore

Explore >> Select a destination

You are here		zhero-web-sec.github.io Next.js, cache, and chains: the stale elixir - zhero_web_security
\|	\|	positive.security From XSS to RCE (dompdf 0day) \| Positive Security	4.0 parsecs away Travel
\|	\|	Using a still unpatched vulnerability in the PHP library dompdf (used for rendering PDFs from HTML), we achieved RCE on a web server with merely a reflected XSS vulnerability as entry point.	4.0 parsecs away Travel
\|	\|	blog.kotowicz.net How to upload arbitrary file contents cross-domain	3.2 parsecs away Travel
\|	\|	A blog on security, malware, cryptography, pentesting, javascript, php and whatnots	3.2 parsecs away Travel
\|	\|	tom.vg Timing Attacks in the Modern Web - tom.vg	5.0 parsecs away Travel
\|	\|	[AI summary] This article discusses browser-based timing attacks that exploit side-channel information to infer resource sizes and user data, highlighting examples like social network group membership and defense mechanisms such as blocking third-party cookies.	5.0 parsecs away Travel
\|	\|	adityarohilla.com Top Resources for getting a Software Engineer job at Big N Companies - Aditya Rohilla	24.4 parsecs away Travel
\|		This short post is written for recent graduates, current students and code newbies looking for a job as a Software Engineer in the Big N companies like Google, Facebook, Amazon, Netflix etc. I have personally tried most of the resources mentioned here (free and paid) during my job search. These have helped me to land...	24.4 parsecs away Travel