Introduction Hello, I’m RyotaK ( @ryotkak ), a security engineer at Flatt Security Inc. Recently, I reported multiple vulnerabilities to several programming languages that allowed an attacker to perform command injection on Windows when the specific conditions were satisfied. Today, affected vendors published advisories of these vulnerabilities 1, so I’m documenting the details here to provide more information about the vulnerabilities and minimize the confusion regarding the high CVSS score.
  • onlinepersonaEnglish
    25·
    8 months ago

    I’ve gotten the question often enough about why and how. You don’t have to open it 🤷

    Anti Commercial AI thingy

    CC BY-NC-SA 4.0

    Inserted with a keystroke running this script on linux with X11

    #!/usr/bin/env nix-shell
#!nix-shell -i bash --packages xautomation xclip

sleep 0.2
(echo '::: spoiler Anti Commercial AI thingy
[CC BY-NC-SA 4.0](https://creativecommons.org/licenses/by-nc-sa/4.0/)

Inserted with a keystroke running this script on linux with X11
```bash'
cat "$0"
echo '```
:::') | xclip -selection clipboard
xte "keydown Control_L" "key V" "keyup Control_L"
    • anton@lemmy.blahaj.zoneEnglish
      3·
      8 months ago

      Seems like my client doesn’t show it as a drop-down I thought it was like the reddit spoiler that where the same size but blacked out. Sorry.