2 matches found
Node setting allows for neighboring hosts to bypass localhost boundary
CVSS Rating: In typical clusters: medium 5.4 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N In clusters where API server insecure port has not been disabled: high 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H A security issue was discovered in kube-proxy which allows adjacent hosts to reach TCP...
Khan Academy: https://mathfacts.khanacademy.org/ includes code from unprivileged localhost port
The webpage https://mathfacts.khanacademy.org/ contains an invalid javascript include at the bottom of the page: This is probably some unintended leftover from the development. In normal situations this will only cause the browser to be unable to connect. But it can actually become a security ris...