zhero;: "spent hours exploring different approaches to improve the exploit and the result"

zhero;@zhero___·18 Şub

spent hours exploring different approaches to improve the exploit and the result is quite promising; report updated I take this opportunity to wish ramadan mubaarak to my fellow believers, enjoy it fully!

zhero;@zhero___

can merely visiting a website lead to cross-site data exfiltration from any site without user interaction? a ""minimal"" PoC has been validated, successfully exfiltrating, as a demonstration, the victim’s gmail address report submitted, hoping to provide more details soon

English

195

24.8K

alex@insertScript·18 Şub

@zhero___ First AmirMSafari publishes an interesting parsing quirk of qs - you are going to (hopefully) publish a report about a new cross-site data exfiltration technique. I like the start of the year .-D

English

864

zhero;@zhero___·18 Şub

@insertScript It's not a new technique, it's software-specific I'll say more as soon as possible I like it too!

English

521

แชร์