Recent security vulnerabilities (XSS + Session fixation)
Hello, It’s late, but I will try to describe security vulnerabilities I found recently: 1) XSS in BugTrackerYou visit bug tracker, hacker can login on your account. This works only if you – as admin – logs into bug tracker and there is malicious report/code from user. The fix is here: Fix XSS in bugtracker.php …
Read More Recent security vulnerabilities (XSS + Session fixation)