Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://gleasonator.com/objects/49f0da4d-6050-4f5b-ac68-2286f9ae2101">Alex Gleason (alex@gleasonator.com)'s status on Tuesday, 29-Aug-2023 01:06:15 JST</a><a href="https://gleasonator.com/users/alex" title="alex@gleasonator.com"><img src="https://gnusocial.jp/avatar/1712-48-20220726020642.webp" width="48" height="48" alt="Alex Gleason" style="position: absolute; left: 0; top: 0;">Alex Gleason</a><div><a href="https://ryona.agency/objects/0e10c97a-0a62-42f3-aed1-62f06f361202" rel="in-reply-to">in reply to</a><ul><li><li><a href="https://gnusocial.jp/user/100757" title="dcc@annihilation.social">✙ dcc :pedomustdie: :phear_slackware:</a></li></ul></div></section><article><a href="https://ryona.agency/users/mint">@mint</a> <a href="https://annihilation.social/users/dcc">@dcc</a> It's like saying XSS on it's own isn't a vulnerability unless you actually use it to steal credentials. It's not an attack in its entirety, but it's an element of an attack, so definitively a vulnerability. If this were on Mastodon it would be assigned a CVE.</article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/1981682#notice-3926161">In conversation</a><time datetime="2023-08-29T01:06:15+09:00" title="Tuesday, 29-Aug-2023 01:06:15 JST">Tuesday, 29-Aug-2023 01:06:15 JST</time> <span>from <span><a href="https://gleasonator.com/objects/49f0da4d-6050-4f5b-ac68-2286f9ae2101" rel="external" title="Sent from gleasonator.com via ActivityPub">gleasonator.com</a></span></span><a href="https://gleasonator.com/objects/49f0da4d-6050-4f5b-ac68-2286f9ae2101">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
Alex Gleason (alex@gleasonator.com)'s status on Tuesday, 29-Aug-2023 01:06:15 JSTAlex Gleason
in reply to
- ✙ dcc :pedomustdie: :phear_slackware:
@mint @dcc It's like saying XSS on it's own isn't a vulnerability unless you actually use it to steal credentials. It's not an attack in its entirety, but it's an element of an attack, so definitively a vulnerability. If this were on Mastodon it would be assigned a CVE.
In conversationTuesday, 29-Aug-2023 01:06:15 JST from gleasonator.compermalink

Public

Embed Notice

HTML Code

Corresponding Notice