Forums
- Recent Posts
- Forum Rules
Downloads
- Most Active Uploaders
- Latest Reviews
Wiki

Your name or email address:

Password:: Forgot your password?

Stay logged in

: Log in with Facebook
: Log in with Twitter
: Log in with Google

Menu
Forums
Forums

Quick Links
- Recent Posts
- Forum Rules
Downloads
Downloads

Quick Links
- Most Active Uploaders
- Latest Reviews
Wiki
Wiki

Quick Links
Menu

Log In
Sign up

Xiaopan Forums

> Support > News Aggregator >

Strapi 3.6.8 Password Disclosure / Insecure Handling

Discussion in 'News Aggregator' started by Packet Storm, 3 May 2022.

Packet Storm Guest

Strap versions prior to 3.6.9 and 4.1.5 disclose a user's password due to simply base64 encoding it and sticking it in a cookie.

Continue reading...

#1 Packet Storm, 3 May 2022

(You must log in or sign up to post here.)

Show Ignored Content

Share This Page

Tweet

Loading...

Log in with Facebook
Log in with Twitter
Log in with Google

Your name or email address:

Do you already have an account?

No, create an account now.
Yes, my password is:
Forgot your password?

: Stay logged in

Xiaopan Forums

> Support > News Aggregator >

Toggle Width

Home
Help
Terms and Rules
Privacy Policy
Top

About Us

We are a community mixed with professionals and beginners with an interest in wireless security, auditing and pentesting. Feel free to check out and upload resources.

You can also find us on: Twitter and Facebook

Theme designed by ThemeHouse.

Xiaopan Forums

> Support > News Aggregator >