npm search RCE? - Escape Sequence Injection (blog.solidsnail.com)
npm search RCE? - Escape Sequence Injection (blog.solidsnail.com)
It’s not a Feature, It’s a Vulnerability (blog.solidsnail.com)
I talk about a report I’ve made to MSRC in the beginning of the year regarding vscode....
It’s not a Feature, It’s a Vulnerability (blog.solidsnail.com)
cross-posted from: infosec.pub/post/5707149...
It’s not a Feature, It’s a Vulnerability (blog.solidsnail.com)
cross-posted from: infosec.pub/post/5707149...
From Terminal Output to Arbitrary Remote Code Execution (blog.solidsnail.com)
cross-posted from: infosec.pub/post/2466014...
From Terminal Output to Arbitrary Remote Code Execution (blog.solidsnail.com)
cross-posted from: infosec.pub/post/2466014...
From Terminal Output to Arbitrary Remote Code Execution (blog.solidsnail.com)
cross-posted from: infosec.pub/post/2466014...
From Terminal Output to Arbitrary Remote Code Execution (blog.solidsnail.com)
This is my first write-up, on a vulnerability I discovered in iTerm2 (RCE). Would love to hear opinions on this. I tried to make the writing engaging.
From Terminal Output to Arbitrary Remote Code Execution (blog.solidsnail.com)
cross-posted from: infosec.pub/post/2466014...
From Terminal Output to Arbitrary Remote Code Execution (blog.solidsnail.com)
cross-posted from: infosec.pub/post/2466014...