A practical demo of privacy violation using local service detection on a website for product recommendations. https://wybiral.github.io/wtf/ pic.twitter.com/hVGrNdwLom
-
-
Luckily the requests are in "opaque" mode so the page shouldn't be able to actually read the response body. But they can ping localhost servers and send data to them.
-
I believe DNS rebinding attacks allow pages to read the response
- Još 3 druga odgovora
Novi razgovor -
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.