CVE-2021-45074

JFrog Artifactory before 7.29.3 and 6.23.38, is vulnerable to Broken Access Control, a low-privileged user is able to delete other known users OAuth token, which will force a reauthentication on an active session or in the next UI session...

Google spreadsheet CSRF+JSON hijacking vulnerabilities-vulnerability warning-the black bar safety net

In 2 0 1 5 years 1 0 months I am in the Google spreadsheet for the API interface found in the JSON + CSRF（cross-site forgery requests, Clickjacking vulnerability. An attacker can exploit this vulnerability in not authorized to access Google Drive files of the case, to obtain the user of the...