ownCloud disclosed a bug submitted by lukasreschke: https://hackerone.com/reports/1838674 – Bounty: $250
Source link
Related Articles
All Mix →
Preventing the growing costs of repeat and duplicate bug bounty submissions
Within the bug bounty industry, duplicate submissions refer to when two or more researchers report the same issue or vulnerability. When a researcher, who works…
The Iceberg Of Network Exploits [Parody]
The Iceberg Of Network Exploits [Parody] Source link
Extracting SSH Private Keys From Windows 10 ssh-agent
This weekend I installed the Windows 10 Spring Update, and was pretty excited to start playing with the new, builtin OpenSSH tools. Using OpenSSH natively…
CWE (Common Weakness Enumeration) and the CWE Top 25 Explained
Table of Contents What Is the CWE Top 25? CWE Examples: Which Are the Most Dangerous CWEs? Invalid Input Validation (CWE-20) Out-of-Bounds Reading (CWE-125) Incorrect…
GitLab – GitLab-Runner on Windows `DOCKER_AUTH_CONFIG` container host Command Injection
HackerOne bug report to GitLab: GitLab-Runner, when running on Windows with a docker executor, is vulnerable to Command Injection via the DOCKER_AUTH_CONFIG build variable. Injected…
Cross-Site Request Forgery (CSRF) Explained
Cross-Site Request Forgery (CSRF) Explained Source link