@sonar_research : Critical Roundcube XSS technical details: Desanitization, unsafe Content-Types, CSS exfiltration, and a Service Worker come together to persistently leak emails from a victim's browser. Read about it here: sonarsource.com/blog/governmen… (CVE-25024-42008, CVE-2024-42009, CVE-2024-42010) • TwiCopy

Sonar Research

@sonar_research

+ Follow

Cutting-edge security research by @SonarSource to educate the world about code security across all software.

We're also at @[email protected] 🦣

ID: 734164442997501952

linkhttps://www.sonarsource.com/blog/tag/security/ calendar_today21-05-2016 23:30:18

1,1K Tweet

10,10K Followers

7 Following

Sonar Research

@sonar_research

a year ago

Critical Roundcube XSS technical details: Desanitization, unsafe Content-Types, CSS exfiltration, and a Service Worker come together to persistently leak emails from a victim's browser. Read about it here: sonarsource.com/blog/governmen… (CVE-2024-42008, CVE-2024-42009, CVE-2024-42010)

thumb_up_off_alt112

chat_bubble_outline1

repeat54

shareShare