Endor Labs notes in their report that Thymeleaf has defense-in-depth layers to block dangerous expressions and in this case two of them failed. For example, a string check scanned the …
Tag:
Popular
Safety & Security
18 Popular Code Packages Hacked, Rigged to Steal Crypto – Krebs on Security
by David Walker
At least 18 popular JavaScript code packages that are collectively downloaded more than two billion times each week were briefly compromised with malicious software today, after a developer involved in …