From PhantomJS picture rendering of XSS vulnerabilities to the SSRF/local file read vulnerability-vulnerability warning-the black bar safety net

One, Foreword Recently I was invited to study a vulnerability reward project, this project can be based on user input to generate a picture, in order for users to download. After a period time of exploring, I found a way to exploit the path, you can use the picture inside theXSSthe vulnerability ...

Flash - Issues in DefineBitsLossless and DefineBitsLossless2 Leads to Using Uninitialized Memory

Source: https://code.google.com/p/google-security-research/issues/detail?id=326&can=1&q=label%3AProduct-Flash%20modified-after%3A2015%2F8%2F17&sort=id Tracking for: https://code.google.com/p/chromium/issues/detail?id=475018 Credit is to bilou, working with the Chromium Vulnerability Rewards...

Android image parsing heap overflow vulnerability analysis(CVE-2 0 1 5-1 5 3 2)-vulnerability warning-the black bar safety net

Recently Google disclosed a year 1 month update of the vulnerability. This vulnerability to fix a exist in Android5. 1 version the following picture rendering problems, you can view the related link. 9patch is the Android on a unique kind of Picture format, that is, in the ordinary png images of...