Cloudflare Public Bug Bounty: Bypass of Cloudflare's Cache Keys and WAF via header overflow

A limitation in the HTTP request header parsing in Front Line FL processing enabled attackers to bypass defined rulesets. The maximum amount of headers being parsed by openresty was 100 HTTP headers including internal ones. This problem applied to any ruleset on HTTP headers. Attackers were able ...

Naval Front-Line :Regia Marina - Dynamic Code Loading, External URLs, MIT license vulnerabilities

HackApp vulnerability scanner discovered that application Naval Front-Line :Regia Marina published at the 'play' market has multiple vulnerabilities...