senooken JP Social
  • FAQ
  • Login
senooken JP Socialはsenookenの専用分散SNSです。

  • Public

    • Public
    • Network
    • Groups
    • Popular
    • People

Conversation

Notices

  1. prograti (prograti@qiitadon.com)'s status on Monday, 18-Feb-2019 16:57:12 JST prograti prograti

    SlackにあったSSRF脆弱性のお話。IPv6の攻撃ベクターは見落としがちかも。WordPressにも過去に似たような脆弱性があった。

    $1.000 SSRF in Slack
    https://medium.com/@elberandre/1-000-ssrf-in-slack-7737935d3884

    In conversation Monday, 18-Feb-2019 16:57:12 JST from qiitadon.com permalink

    Attachments

    1. $1.000 SSRF in Slack – Elber Andre – Medium
      from Medium
      How I got a $1,000 SSRF on Slack using the same bypass.
    • zunda ? nはおまけ :green_dango: repeated this.

Feeds

  • Activity Streams
  • RSS 2.0
  • Atom
  • Help
  • About
  • FAQ
  • TOS
  • Privacy
  • Source
  • Version
  • Contact

senooken JP Social is a social network, courtesy of senooken. It runs on GNU social, version 2.0.2-beta0, available under the GNU Affero General Public License.

Creative Commons Attribution 3.0 All senooken JP Social content and data are available under the Creative Commons Attribution 3.0 license.