CSRF
No mentions found
This entity hasn't been tracked yet, or Iris is still building its knowledge base.
Related Articles from SNS
How to guarantee a speaker gig: Hack the system. Literally
A security researcher discovered a stored cross-site scripting (XSS) vulnerability in pretalx, an open-source tool used by conference organisers for speaker submissions. This flaw could allow an attacker to inject malicious code into fields like submission titles, potentially enabling session takeover of the organiser's account. The vulnerability has since been patched in pretalx version 2026.1.0.
A Retinomorphic Optical Spiking Neuron for Camouflaged Object Detection
arXiv:2606.00818v1 Announce Type: new Abstract: Advanced vision systems require retinomorphic, energy-efficient spike-based preprocessing of dynamic visual scenes. Here, we demonstrate multiple retinal preprocessing functionalities by leveraging a Hodgkin-Huxley-based optical spiking neuron (OSHN) that incorporates a two-dimensional anti-ambipolar phototransistor operated in the subthreshold regime to minimize power consumption. OSHN exhibits wavelength- and intensity-sensitive spike...
1-Click GitHub Token Stealing via a VSCode Bug
Just by clicking a link, it’s possible for an attacker to steal a GitHub token that can read and write to your repos, including private ones. Table of Contents - Background - VSCode Webview Security Model - PoC and Protecting Yourself - What VSCode Did Well - Why Full Disclosure - Timeline Background Did you know GitHub has this really cool feature called github.dev? On any repository you have access to, if you can change the url from github.com to github.dev or you click this little menu...