Poking new holes with Flash Crossdomain Policy files. Very scary attack: if you can upload a file to a server, you can probably open it up to XSRF.
Recent articles
- V&A East Storehouse and Operation Mincemeat in London - 27th August 2025
- The Summer of Johann: prompt injections as far as the eye can see - 15th August 2025
- Open weight LLMs exhibit inconsistent performance across providers - 15th August 2025