of course it's not a real one
Popular Posts
-
TL;DR OAuth2 sucks. Please don't think about OAuth2 as about the next generation of OAuth1. They are completely different like colors: ... -
" Thanks! " to Cubbiccino (in this post), as well as others, who shared the following quotes from J.Crew (check... -
" Thanks! " to many of you, who shared the following promotion for J.Crew Factory. J.Crew is offering Factory Store shoppers a... -
J.Crew sent an email this morning reminding customers that today is the last day they are offering 50% off Final Sale with promotional code ... -
I discovered [1, nil] attack, but while i was checking unsafe query generation and DoS with symbols people on twitter found RCE for YAML thr...
-
TL;DR ///host.com is parsed as relative-path URL by server side libraries, but Chrome and Firefox violate RFC and load http://host.com inst...
-
Previously on Github: XSS , CSRF ( My github followers are real , I gained followers using CSRF on bitbucket ), access bypass, mass assignm... -
" Thanks! " to many of you , including Susan (in this post), who let us know that there are several images from ... -
TL;DR Every website with "Connect Facebook account and log in with it" is vulnerable to account hijacking. Every website relying o...
