HK
Heykuki News
Top
New
Best
Ask
Show
Jobs
Toggle theme
Top
New
Best
Ask
Show
Jobs
Request
1.
▲
HTTP Response Splitting Vulnerability on reddit.com
nealpoole.com
26 comments
15 years ago
there
80 points
2.
▲
Avoiding Arbitrary Code Execution with nginx and php-fastcgi
nealpoole.com
15 comments
15 years ago
nbpoole
61 points
3.
▲
Cross-Site Scripting? In PHP Notices? It's more likely than you think
nealpoole.com
14 comments
15 years ago
nbpoole
43 points
4.
▲
Preventing CSRF Attacks with AJAX and HTTP Headers
nealpoole.com
4 comments
14 years ago
swah
39 points
5.
▲
Hacking Google Calendar
nealpoole.com
5 comments
16 years ago
dfield
25 points
6.
▲
Reports from Google’s Vulnerability Reward Program
nealpoole.com
discuss
16 years ago
nbpoole
10 points
7.
▲
XSS Filters can be used to bypass clickjacking (scroll down to point 3)
nealpoole.com
2 comments
15 years ago
simonw
8 points
8.
▲
Directory Traversal via PHP Multi-File Uploads
nealpoole.com
1 comment
15 years ago
wglb
8 points
9.
▲
Preventing CSRF Attacks with AJAX and HTTP Headers
nealpoole.com
2 comments
15 years ago
wglb
6 points
10.
▲
Arbitrary Code Execution with Null Bytes, PHP, and Old Versions of nginx
nealpoole.com
discuss
15 years ago
nbpoole
5 points
11.
▲
Lessons from Facebook's Security Bug Bounty Program
nealpoole.com
discuss
15 years ago
nbpoole
3 points
12.
▲
How Does Cross-Site Scripting Become Arbitrary Code Execution?
nealpoole.com
discuss
15 years ago
nbpoole
3 points
13.
▲
Java Deployment Toolkit Plugin Does Not Validate Installer Executable
nealpoole.com
1 comment
15 years ago
wglb
2 points
14.
▲
Directory Traversal / Local File Inclusion on addons.mozilla.org
nealpoole.com
1 comment
15 years ago
nbpoole
2 points
15.
▲
XSS Filter Bypass in validator Node.js Module
nealpoole.com
discuss
13 years ago
QUFB
2 points
16.
▲
CSRF Token Disclosure in Coinbase
nealpoole.com
discuss
13 years ago
wglb
2 points
17.
▲
How Hard Is It To Blacklist A Java Applet?
nealpoole.com
discuss
13 years ago
wglb
2 points
18.
▲
Security Vulnerabilities in Popular Flash Applets (SWFUpload, Plupload)
nealpoole.com
discuss
14 years ago
nbpoole
2 points
19.
▲
Safari for Windows handles text/plain content improperly (CVE-2010-1420)
nealpoole.com
discuss
15 years ago
wglb
2 points
20.
▲
File uploads allow for cross-site scripting in Wordpress
nealpoole.com
1 comment
15 years ago
nbpoole
1 points
21.
▲
Setting up PHP-FastCGI and nginx? Don’t trust the tutorials.
nealpoole.com
discuss
12 years ago
WhiteDawn
1 points
22.
▲
(Unpatched) Reflected XSS in JW Player 5
nealpoole.com
discuss
13 years ago
wglb
1 points
23.
▲
Bad Changes to eBay’s Responsible Disclosure Policy
nealpoole.com
discuss
13 years ago
tshtf
1 points
24.
▲
CSRF, Clickjacking, and the Role of X-Frame-Options
nealpoole.com
discuss
14 years ago
tshtf
1 points
25.
▲
Twitter White Hat Vulnerabilities
nealpoole.com
discuss
14 years ago
wglb
1 points
26.
▲
CSRF, Clickjacking, and the Role of X-Frame-Options
nealpoole.com
discuss
14 years ago
wglb
1 points
27.
▲
Directory Traversal via PHP Multi-File Uploads
nealpoole.com
discuss
14 years ago
dominis
1 points
28.
▲
Java Deployment Toolkit Plugin Does Not Validate Installer Executable
nealpoole.com
discuss
15 years ago
wglb
1 points
29.
▲
Java Applet Same-Origin Policy Bypass via HTTP Redirect
nealpoole.com
discuss
15 years ago
wglb
1 points