Dart 安全漏洞

Dart is an open source programming language. A security vulnerability exists in Dart versions prior to 2.18 and prior to 3.30 that stems from the use of RFC 3986 syntax for its Dart URI class, which results in an incompatibility with the "" character in the uri, which could lead to bypassing...

RubyGems: Request Hijacking Vulnerability in RubyGems 2.6.13 and earlier

We received this report via security@ from [email protected], I'm filing here for tracking and visibility purposes... "I was looking at commit 8d91516fb7037ecfb27622f605dc40245e0f8d32, which was the fix for the DNS hijacking issue CVE-2017-0902. The function still handles the DNS response in ...