Sicherheitslücken #Gitlab: Heruntergestufte Admins behalten weitreichende Rechte | Security https://www.heise.de/news/Sicherheitsluecken-Gitlab-Heruntergestufte-Admins-behalten-weitreichende-Rechte-10332147.html #git 
#Patchday #XSS #CrossSiteScripting
Cross-eyed scripting.
Cross-site scripting.
You haven't lived if you've done neither.
ADR Report | Application Detection and Response Trends | Contrast Labs – Source: securityboulevard.com https://ciso2ciso.com/adr-report-application-detection-and-response-trends-contrast-labs-source-securityboulevard-com/ #ApplicationDetectionandResponse(ADR) #rssfeedpostgeneratorecho #SecurityBloggersNetwork #crosssitescripting #CyberSecurityNews #Perimeterdefenses #SecurityBoulevard #.netapplication #methodtampering #cyberattacks #SQLinjection #APIsecurity #attacks #.NET #XSS
Sicherheitsupdates #Zimbra: Angreifer können Metadaten von E-Mails auslesen | Security https://www.heise.de/news/Sicherheitsupdates-Zimbra-Angreifer-koennen-Metadaten-von-E-Mails-auslesen-10277628.html #Patchday #XSS #CrossSiteScripting
Jetzt patchen: Cross-Site-Scripting und Denial of Service in #GitLab möglich | Developer https://www.heise.de/news/Jetzt-patchen-Cross-Site-Scripting-und-Denial-of-Service-in-GitLab-moeglich-10254924.html #Patchday #DoS #DenialOfService #XSS #CrossSiteScripting
Heimserver-Betriebssystem: Updates beheben Sicherheitslücken in #Unraid | Security https://www.heise.de/news/Heimserver-Betriebssystem-Updates-beheben-Sicherheitsluecken-in-Unraid-10253366.html #Patchday #XSS #CrossSiteScripting
Ist die Content Security Policy Level 3 eigentlich "aktueller Stand der Technik", wenn sie sich im Status "working draft" befindet? Eigentlich nicht, oder?!
#csp #xss #crosssitescripting #security #webentwicklung #dev #itsecurity #dsgvo #bsi #datenschutz
#CMS: Updates stopfen Sicherheitslecks in #ProgressSitefinity | Security https://www.heise.de/news/CMS-Updates-stopfen-Sicherheitslecks-in-Progress-Sitefinity-10233332.html #Sitefinity #Patchday #XSS #CrossSiteScripting #ContentManagementSystem
Web-Security: Mit Content Security Policy gegen Cross-Site Scripting, Teil 2 | Developer https://www.heise.de/hintergrund/Web-Security-Mit-Content-Security-Policy-gegen-Cross-Site-Scripting-Teil-2-10175246.html #XSS #development #JavaScript #CrossSiteScripting
iOS 18.1.1 und macOS Sequoia 15.1.1 schließen aktiv ausgenutzte Sicherheitslücken
Apple hat mit den neuen Updates iOS 18.1.1 und macOS Sequoia 15.1.1 bedeutende Sicherheitslücken geschlossen, die Beric
https://www.apfeltalk.de/magazin/feature/ios-18-1-1-und-macos-sequoia-15-1-1-schliessen-aktiv-ausgenutzte-sicherheitsluecken/
#Feature #iPad #iPhone #Mac #Apple #CrossSiteScripting #CVE202444308 #CVE202444309 #IntelMac #IOS1811 #JavaScriptCore #MacOSSequoia1511 #Sicherheitsupdate #Webkit
Web-Security: Mit Content Security Policy gegen Cross-Site Scripting, Teil 1 | Developer https://www.heise.de/hintergrund/Web-Security-Mit-Content-Security-Policy-gegen-Cross-Site-Scripting-Teil-1-9998046.html #XSS #Development #JavaScript #CrossSiteScripting
Secure by Design: CISA und FBI wollen Cross-Site-Scripting den Garaus machen | heise online
https://heise.de/-9952290 #CrossSiteScripting
Arc – Schwere Sicherheitslücke gefunden
#ITSicherheit #ArcBrowser #Browser #CrossSiteScripting #Sicherheitslücke https://sc.tarnkappe.info/3b3a30
Ticketsystem #OTRS: Angreifer können unverschlüsselte Passwörter einsehen | Security https://www.heise.de/news/Ticketsystem-OTRS-Angreifer-koennen-unverschluesselte-Passwoerter-einsehen-9849809.html #Patchday #XSS #CrossSiteScripting
Sicherheitsupdates: Lernplattform #Moodle vielfältig angreifbar | Security https://www.heise.de/news/Sicherheitsupdates-Lernplattform-Moodle-vielfaeltig-angreifbar-9840415.html #Patchday #CrossSiteScripting #XSS
A little overview of protection bypasses
| Type | Explanation | Example |
| -------------------------------- | ------------------------------------------------------------------------------------------------------------------------------- | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------ |
| Null Value | Just leave the token Empty, Sometimes Server just checks for the headers | CSRF-Token: |
| Random CSRF Token | Recreate a fake token with random values | Real:CSRF-Token: 9cfffd9e8e78bd68975e295d1b3d3331
Fake:CSRF-Token: 9cfffl3dj3837dfkj3j387fjcxmfjfd3 |
| Use another Session's CSRF Token | Create multiple accounts and try the csrf token of Account A for a Request of Account B | - |
| Request Method Tampering | Change the request type from. GET to POST | Originalhttp<br>POST /change_password<br>POST body:<br>new_password=pwned&confirm_new=pwned<br>
Fakehttp<br>GET /change_password?new_password=pwned&confirm_new=pwned<br> |
| Delete token | Just remove the token in general. Do not send token (it may work) | |
| Session Fixation | If website keeps anti-csrf token in cookie and params, it probably isn't keeping the token on the server so just fix your token | http<br>POST /change_password<br>Cookie: CSRF-Token=fixed_token;<br>POST body:<br>new_password=pwned&CSRF-Token=fixed_token<br> |
| Regex Bypass | You can try to bypass Regex checks for website whitelists etc... | www.google.com.pwned.zanidd.xyz or something like that |
Don't know how good mastodon handles markdown tables, but you can see it at https://notes.zanidd.xyz/cybersecurity-and-hacking/web/session-security a little better.
Also let's not forget that weak csrf tokens happen also (very often?)
md5(username) we could verify check that by logging in and seeing our csrf tokens)Check for the following and similar "token generation algorithms":
md5(username)sha1(username)md5(current date + username)This can be done with a simple bash command:
echo -n <username> | md5sum
etc...