Vulnerabilities (Page 11)

Unsafe Client-Sided Sessions in Zabbix

web

The lesson here is just don’t store session data on the client and if you must, don’t take shortcuts, its tough to get right in the first place.Effectively here Zabbix stored session data in the user cookies…

 

Overly Generous Transfer Allowance in EarnHub

A simple smart contract issue this week from an actual theft, and the problem, being too trusting.The makeHop function allows users to transfer their shares between different staking pools…