@BRIAN_____ Really I'm always amazed at how *infrequently* such bugs are found in Bugzilla, given surely it's a high enough target.
-
-
-
@gsnedders Infrequency of reporting isn't the same as Infrequency of finding. -
@BRIAN_____ Most of the CVEs I've seen in recent years have been XSS and CSRF attacks. Though really XSS is really enough for data leakage… -
@gsnedders I've been talking to lots of folks who say XSS and CSRF are solved problems in their organizations.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.