Security Unfavorable Specifications and Implementations in the CGI::Cookie Class

Internet Bug Bounty disclosed a bug submitted by ht0k: https://hackerone.com/reports/1889477 – Bounty: $480

Source link

Read Next

August 6, 2025

Why Marcus Is Wrong About AI

August 5, 2025

HTTP Request Smuggling Explained: with seasoned bug bounty hunter NahamSec and world-class researcher James Kettle

August 5, 2025

Why Platforms Like Substack Won’t Make Sense for Much Longer

August 4, 2025

Why We Built a Museum Instead of a Booth — API Security

August 1, 2025

Launching Daemon: My Personal API

August 1, 2025

Increased Worker Pressure from AI

August 1, 2025

Solving the challenges of a bug bounty program manager (BBPM). Strategic execution for security leaders.

July 31, 2025

[tl;dr sec] #290 – Securing MCP, AppSec Archetypes, CISO’s Guide to Protecting Crown Jewels

July 31, 2025

Debunking API Security Myths

July 29, 2025

How to identify the origin IP

August 6, 2025

Why Marcus Is Wrong About AI

August 5, 2025

HTTP Request Smuggling Explained: with seasoned bug bounty hunter NahamSec and world-class researcher James Kettle

August 5, 2025

Why Platforms Like Substack Won’t Make Sense for Much Longer

August 4, 2025

Why We Built a Museum Instead of a Booth — API Security

August 1, 2025

Launching Daemon: My Personal API

August 1, 2025

Increased Worker Pressure from AI

August 1, 2025

Solving the challenges of a bug bounty program manager (BBPM). Strategic execution for security leaders.

July 31, 2025

[tl;dr sec] #290 – Securing MCP, AppSec Archetypes, CISO’s Guide to Protecting Crown Jewels

July 31, 2025

Debunking API Security Myths

July 29, 2025

How to identify the origin IP