Heykuki News
Top
New
Best
Ask
Show
Jobs
Toggle theme
Login
Top
New
Best
Ask
Show
Jobs
31.
▲
WordPress security plugin Hide My WP addresses SQL injection, deactivation flaws
(portswigger.net)
75 points
patchstack
5 years ago
51 comments
32.
▲
HTTP Desync Attacks: Request Smuggling Reborn
(portswigger.net)
75 points
karma20
7 years ago
11 comments
33.
▲
Critical Samba flaw presents code execution threat
(portswigger.net)
74 points
feross
4 years ago
41 comments
34.
▲
Web App Hacker's Handbook 2nd Edition - Preview
(blog.portswigger.net)
70 points
wglb
15 years ago
14 comments
35.
▲
CSP bypass: How one Chrome XSS bug took 2.5 years and an HTML spec change to fix
(portswigger.net)
67 points
weinzierl
5 years ago
15 comments
36.
▲
DNA data of sexual assault victims exposed in breach at US laboratory
(portswigger.net)
63 points
carride
4 years ago
23 comments
37.
▲
Expired web domains help criminal hackers unlock enterprise defenses
(portswigger.net)
60 points
bhartzer
4 years ago
22 comments
38.
▲
Lessons Learned: A severe vulnerability in the OWASP ModSecurity Core Rule Set
(portswigger.net)
55 points
feross
5 years ago
6 comments
39.
▲
Chain of vulnerabilities led to RCE on Cisco Prime servers
(portswigger.net)
48 points
feross
4 years ago
4 comments
40.
▲
Same-origin violation vulnerability in Safari 15 could leak a user’s website
(portswigger.net)
47 points
feross
4 years ago
17 comments
41.
▲
Bypassing CSP using polyglot JPEGs
(blog.portswigger.net)
43 points
inian
10 years ago
15 comments
42.
▲
HTTP/1.1 must die: the desync endgame
(portswigger.net)
42 points
sprawl_
10 months ago
25 comments
43.
▲
Node.js was vulnerable to a novel HTTP request smuggling technique
(portswigger.net)
39 points
xojoc
5 years ago
4 comments
44.
▲
Google Project Zero hails dramatic acceleration in security bug remediation
(portswigger.net)
36 points
feross
4 years ago
7 comments
45.
▲
Cracking the Lens: Targeting HTTP's Hidden Attack-Surface
(blog.portswigger.net)
36 points
j_s
9 years ago
discuss
46.
▲
Go typosquatting package relays info to tech firm
(portswigger.net)
32 points
LysPJ
5 years ago
11 comments
47.
▲
Implementing Tic Tac Toe with 170mb of HTML – No JavaScript or CSS
(portswigger.net)
31 points
fagnerbrack
3 years ago
31 comments
48.
▲
Prototype Pollution (2020)
(portswigger.net)
31 points
valand
5 years ago
11 comments
49.
▲
Chrome is deprecating direct access to private networks from public websites
(portswigger.net)
27 points
caaqil
4 years ago
7 comments
50.
▲
API security: Broken access controls, injection attacks plague the enterprise
(portswigger.net)
25 points
feross
4 years ago
discuss
51.
▲
Stealing passwords from infosec Mastodon – without bypassing CSP
(portswigger.net)
20 points
tosh
4 years ago
1 comment
52.
▲
Popular websites leaking user email data to web tracking domains
(portswigger.net)
19 points
rntn
4 years ago
discuss
53.
▲
SnapFuzz: New fuzzing tool speeds up testing of network applications
(portswigger.net)
18 points
feross
4 years ago
2 comments
54.
▲
Detecting and exploiting path-relative stylesheet import vulnerabilities
(blog.portswigger.net)
18 points
restlessmedia
11 years ago
discuss
55.
▲
HTTP/1.1 must die: the desync endgame
(portswigger.net)
17 points
octagons
10 months ago
2 comments
56.
▲
Pip-audit: Google-backed tool probes Python environments for vulnerable packages
(portswigger.net)
15 points
feross
5 years ago
2 comments
57.
▲
Implementing Tic Tac Toe with 170mb of HTML – No JavaScript or CSS
(portswigger.net)
13 points
thunderbong
3 years ago
5 comments
58.
▲
Connecticut becomes fifth US state to enact comprehensive consumer privacy law
(portswigger.net)
12 points
feross
4 years ago
discuss
59.
▲
Van Buren appeal arguments in light of Computer Fraud and Abuse Act ambiguity
(portswigger.net)
12 points
DyslexicAtheist
6 years ago
discuss
60.
▲
GoDaddy managed WordPress hosting service breach exposed 1.2m user profiles
(portswigger.net)
11 points
feross
5 years ago
1 comment
More