链接列表 投稿链接
RSS订阅
微软身份漏洞-未授权强制解绑任意微软账户邮箱(全球微软账户邮箱或受影响)
7402
Web安全
How an obscure PHP footgun led to RCE in Craft CMS
6716
Web安全
漏洞分析
SpringMVC的URI解析和权限绕过
7474
Web安全
Bypassing WAFs with the phantom $Version cookie
5202
Web安全
Databricks JDBC Attack via JAAS
5083
Web安全
Exploit
Using YouTube to steal your files Ʊ lyra's epic blog
5136
Web安全
Apache Struts2 文件上传逻辑绕过(CVE-2024-53677)(S2-067)
5424
Web安全
漏洞分析
Diving deep into Jetbrains TeamCity Part 2 - Analysing CVE-2024-24942 leading to unauthenticated Path Traversal
6260
Web安全
漏洞分析
Remote Code Execution with Spring Properties
6662
Web安全
Chrome扩展攻击指南
6618
Web安全
Exploiting File Writes in Hardened Node.js Environments
5286
Web安全
软件安全
Introducing lightyear: a new way to dump PHP files
3956
Web安全
Super Blind SQL Injection- $20000 bounty | Thousands of targets still vulnerable
5656
Web安全
CVE-2024-9264: Grafana Remote Code Execution via SQL Expressions
5509
Web安全
漏洞分析
Why Code Security Matters - Even in Hardened Environments
6755
Web安全