链接列表 投稿链接
RSS订阅
关于blackhat2021披露的fastjson1.2.68链
3325
Web安全
Tampering with arbitrary packages in @types scope of npm
3276
Web安全
A New Attack Surface on MS Exchange Part 2 - ProxyOracle!
3247
Web安全
A New Attack Surface on MS Exchange Part 1 - ProxyLogon!
3345
Web安全
Java反序列化数据绕WAF之加大量脏数据
3714
Web安全
Potential remote code execution in PyPI
3794
Web安全
Finding and Exploiting Unintended Functionality in Main Web App APIs
4698
Web安全
Java内存马:一种Tomcat全版本获取StandardContext的新方法
3484
Web安全
Pre-Auth RCE in Moodle Part I - PHP Object Injection in Shibboleth
2996
Web安全
Forgot password? Taking over user accounts Kaminsky style
2887
Web安全
Remote code execution in cdnjs of Cloudflare
4641
Web安全
Thymeleaf Fragment 注入漏洞复现及新姿势扩展
4125
Web安全
攻防启示:Chromium组件风险剖析与收敛
4328
Web安全
用一个 case 去理解 jdk8u20 原生反序列化漏洞
6643
Web安全
公开一个macOS命令执行技巧
5629
Web安全