wlc 信任管理问题漏洞

wlc is an open source command line client for Weblate. A trust management issue vulnerability exists in versions of wlc prior to 1.17.0, which stems from the fact that SSL authentication is skipped for certain specially crafted URLs...

U.S. Dept Of Defense: Public instance of Jenkins on https://██████████/ with /script enabled

Summary: An Amazon instance was found on https://█████/ running Jenkins. On analysing the SSL certificate, I reported here to the DoD. Description: On checking the SSL certificate, the details show: Issued to and Issued By records: CN: █████ OrganizationO: █████████ Organizational Unit OU: ███...