CVE-2025-30466: Safari <18.4 UXSS to bypass Same-Origin Policy with CVSS of Critical 9.8 🔴 ;) support.apple.com/en-us/122379#:…

<meta http-equiv="refresh" content="0;url='//example.com'@x.com/'"> Chrome redirects to x.com, Safari and Firefox redirect to example.com.

It's easy to bash vulnerabilities with logos but... I couldn't resist, say hello to http1mustdie.com :)

'"--><svg/onload=top[30]()>${{4*9}}<script>+alert?.``</script> •top[30]() → Triggers XSS without using the word alert •alert?.\`` → Optional chaining + template literal stealthy JS excution •--><svg> → Breaks out of HTML comments •${{4*9}} → SSTI,CSTI #BugBounty

I hope everyone got some rest after DownUnderCTF this weekend. My colleague hashkitten wrote up a blog post on a novel technique for SQL Injection in PDO's prepared statements, required to exploit the “legendary” challenge, which only got one solve: slcyber.io/assetnote-secu…

I'm happy to release a script gadgets wiki inspired by the work of Sebastian Lekies, koto, and Eduardo Vela in their Black Hat USA 2017 talk! 🔥 The goal is to provide quick access to gadgets that help bypass HTML sanitizers and CSPs 👇 gmsgadget.com 1/4

En Querétaro

🚨New Black Hat research released: Over $200k in bounties earned in just two weeks. Join the movement to kill HTTP/1.1 today ⬇️ 🔍PortSwigger’s James Kettle (James Kettle) introduces two new classes of HTTP desync attacks capable of compromising credentials on tens of millions of

🚨New Black Hat research released: Over $200k in bounties earned in just two weeks. Join the movement to kill HTTP/1.1 today ⬇️ 🔍PortSwigger’s James Kettle (James Kettle) introduces two new classes of HTTP desync attacks capable of compromising credentials on tens of millions of

The whitepaper is live! Learn how to win the HTTP desync endgame... and why HTTP/1.1 needs to die: http1mustdie.com

ActiveScan++ can now detect multiple advanced unicode exploits just dropped at #BHUSA including confusables, codepoint overflows, case-conversion and combining diacritics! Thanks to researchers Ryan Barnett (B0N3) @ hackersummercamp & Angel Hacker for contributing this awesome update.

Watch HTTP/1.1 Must Die live today at 1630 PST! - In person at #defcon33 track 1, main stage - Remote livestream free on YouTube (link below) Enjoy!

Oh mom, I am in Phrack Zine! #why2025

For a limited time you can still watch the talk here: m.youtube.com/watch?v=sslnkb…

Moving to upstream HTTP/2 slams the door on desync attacks. Binary framing eliminates the ambiguity HTTP/1.1 suffers from, reducing exploitability. In this blog, James Kettle, Director of Research at PortSwigger, outlines a clear case for replacing HTTP/1.1 with HTTP/2 to prevent

Thanks PortSwigger and Bug Bounty Village for this awesome event — and also to my DEVCORE buddies for standing on stage to collect the trophy for me! A little follow-up article on this research is coming soon... stay tuned! 🤘

Orange Tsai 🍊 Ariel Garcia PortSwigger Bug Bounty Village DEVCORE Congrats, that research was top tier! I got one too 🙏

Lab: portswigger.net/web-security/r… Livestream signup: youtube.com/live/B7p8dIB7b…

Que ardan las redes sociales Se libera el prerregistro en punto de 13:37 PM hora de #Queretaro #BSides #BSidesQueretaro #Ciberseguridad ATT, Agente 👽. (Sin ésto no podrán acceder a los boletos) 👹

How they hacked 24 million websites... by accident! 😮 A simple investigation into a redirect bug turned into one of the largest accidental website compromises James Kettle has ever seen. Security researcher groeneappel ⵣ found an H2.0 desync on a Heroku-hosted site behind