GNU social JP
  • FAQ
  • Login
GNU social JPは日本のGNU socialサーバーです。
Usage/ToS/admin/test/Pleroma FE

  • Public

    • Public
    • Network
    • Groups
    • Featured
    • Popular
    • People

Embed Notice

HTML Code

Corresponding Notice

  1. Embed this notice
    Bee O'Problem :godot: (beeoproblem@mastodon.gamedev.place)'s status on Tuesday, 29-Aug-2023 01:45:21 JSTBee O'Problem :godot:Bee O'Problem :godot:
    in reply to

    To be safe I even wasted my time checking the server itself and the entire stack has literally zero interaction with the query string whatsoever.

    I'm mainly angry due to the absurd "high" confidence ZAP is assigning the flag.

    First: ZAP has no knowledge of the server's implementation. There's no way to tell a "blind" injection even exists.

    Second: The evidence something bad happened is NOTHING. It's just as likely the input didn't do anything.

    Third: Response time was unchanged

    In conversationTuesday, 29-Aug-2023 01:45:21 JST from mastodon.gamedev.placepermalink
  • Help
  • About
  • FAQ
  • TOS
  • Privacy
  • Source
  • Version
  • Contact

GNU social JP is a social network, courtesy of GNU social JP管理人. It runs on GNU social, version 2.0.2-dev, available under the GNU Affero General Public License.

Creative Commons Attribution 3.0 All GNU social JP content and data are available under the Creative Commons Attribution 3.0 license.