This document captures the links to all of the different artifact server hosts that have announced they will be formally depricating downloading dependencies over HTTP and will only be supporting HTTPS starting in January 2020.
Want to take over the Java ecosystem? All you need is a MITM!
safer-eval is a node JS library that supposedly provides a 'safe' way to 'eval' untrusted javascript.
As the maintainer warns in the README:
Warning: The saferEval function may be harmful - so you are warned!
However, it is still used by various libraries to parse/execute untrusted code in such a way that there is an implied
| import tutorial | |
| from Person t | |
| where t.getHeight() > 150 and | |
| t.getHairColor() != "blond" and | |
| exists (string c | t.getHairColor() = c) and | |
| t.getAge() >= 30 and | |
| t.getLocation() = "east" and | |
| (t.getHairColor() = "black" or t.getHairColor() = "brown") and | |
| not (t.getHeight() > 180 and t.getHeight() < 190) and |
| # To prevent the vulnerable server from running on your machine | |
| # (this does not impact Zoom functionality), run these two lines in your Terminal. | |
| pkill "ZoomOpener"; rm -rf ~/.zoomus; touch ~/.zoomus && chmod 000 ~/.zoomus; | |
| pkill "RingCentralOpener"; rm -rf ~/.ringcentralopener; touch ~/.ringcentralopener && chmod 000 ~/.ringcentralopener; | |
| # (You may need to run these lines for each user on your machine.) |
The Ktor Coroutine based I/O Server implementation io.ktor.client.engine.cio.CIO is vulnerable to HTTP Response Splitting.
This vulnerability is fixed in Ktor version 1.2.6.
If this is your first time using GitHub Security Advisories, please allow me to guide you through how they work.
As of September 17th, 2019, when advisories are published, the entire discussion within the advisory will not be made public. Any information you want to provide to the public should be included in the advisory body.
| <img src="http://localhost:19421/launch?action=join&confno=492468757"/> |
| =IF(N3="",IF(ISNA(VLOOKUP(B3,'Distance Dictionary'!$A$3:$B$129,2, FALSE)),"",VLOOKUP(B3,'Distance Dictionary'!$A$3:$B$129,2, FALSE)),IF(OR(M3="Two Way", M3="two way"),"",N3)) |
GCHQ Stroom is vulnerable to Cross-Site Scripting due to the ability to load the Stroom dashboard on another site and insufficient protection against window event origins.
Launch Stroom and assign it a hostname like stroom.my-company.com, then log in.
This POC demonstrates taking advantage of a XSS vulnerability in TeamCity allowing an attacker to achieve Remote Code Execution on a build agent if the victim has the ability to add steps to a CI job.
The POC can be simplified to the following URL:
https://[domain.com]/project.html?projectId=[target_project_id]&tab=problems%27%7D)%3B%7D)()%3B[JS_PAYLOAD]