漏洞 Vulnerability
多款D-Link路由器存在命令执行漏洞
https://www.cnvd.org.cn/flaw/show/CNVD-2020-15533
安全工具 Security Tools
Astra-REST API的自动化安全测试
https://www.kitploit.com/2020/03/astra-automated-security-testing-for.html
安全报告 Security Report
悬赏提示-开放重定向升级为XSS!!
https://medium.com/bugbountywriteup/bounty-tip-open-redirection-escalated-further-into-an-xss-edec8e3abe78
发现隐藏的网络
https://medium.com/bugbountywriteup/discovering-the-hidden-web-638a947361ad
任意文件读取漏洞的曲折历程
https://www.freebuf.com/articles/web/229648.html
安全事件 Security Incident
Google解决了Chrome中严重的错误
https://securityaffairs.co/wordpress/100164/security/google-chrome-bugs.html
安全研究 Security Research
新的Mirai变型目标是Zyxel网络连接存储设备
https://unit42.paloaltonetworks.com/new-mirai-variant-mukashi/
WordPress ThemeREX Addons 插件安全漏洞深度分析
https://paper.seebug.org/1151/
Django CVE-2020-9402 Geo SQL注入分析
https://xz.aliyun.com/t/7403
CVE-2020-10189/Zoho ManageEngine Desktop Central 10反序列化远程代码执行
https://xz.aliyun.com/t/7404
版权声明
本站原创文章转载请注明文章出处及链接,谢谢合作!
评论