Seclog - #28
Infecting SSH, bug chain: postMessage, JSONP, WAF bypass, DOM-based XSS, CORS, CSRF, Building a Tor Hidden, etc.
Photo by Kirsten LaChance on Unsplash
seclinks
A smorgasbord of a bug chain: postMessage, JSONP, WAF bypass, DOM-based XSS, CORS, CSRF
1749129 - Side-channel attack can deanonymize users (potential risk to journalists and activists)
Report #1923672 - Account takeover due to insufficient URL validation on RelayState parameter
Report #1946534 - Open redirect due to scanning QR code via brave browser
acme.sh runs arbitrary commands from a remote server · Issue #4659 · acmesh-official/acme.sh
Analyzing Broken User Authentication Threats to JSON Web Tokens