Twitter | Pretraživanje | |
Xh4H
Attention CTF players (and organizers, CTFd v2.0.0 - v2.2.2 has a serious vulnerability (CVE-2020-7245) in which an attacker could perform account takeover using a leading-trailing on the Registration form. It has been fixed in v2.2.3. Make sure to update!
CTFs as you need them. Contribute to CTFd/CTFd development by creating an account on GitHub.
GitHub GitHub @github
Reply Retweet Označi sa "sviđa mi se" More
Xh4H 1. velj
Odgovor korisniku/ci @RiftWhiteHat
Woops, leading-trailing whitespace.... But I guess the tweet is still valid as there's a whitespace after "leading-trailing"... Right? 🥺
Reply Retweet Označi sa "sviđa mi se"
Tahar Amine ELHOUARI 2. velj
Odgovor korisniku/ci @RiftWhiteHat
I've found the same vulnerability a year ago in a live CTF contest, but I did not report it and I just don't know why :3
Reply Retweet Označi sa "sviđa mi se"
Xh4H 2. velj
Odgovor korisniku/ci @MrTaharAmine
Extended CTF coverage 😆
Reply Retweet Označi sa "sviđa mi se"
scraps 2. velj
Odgovor korisniku/ci @RiftWhiteHat
I'm looking forward to seeing this in future CTFs 😉
Reply Retweet Označi sa "sviđa mi se"
volodia 3. velj
Odgovor korisniku/ci @RiftWhiteHat @Th3PeKo i 4 ostali
Reply Retweet Označi sa "sviđa mi se"