RSS Bot@lemmy.bestiver.seMB to Hacker News@lemmy.bestiver.seEnglish · 3 months ago

Adult sites are stashing exploit code inside racy .svg files

arstechnica.com

4

17

Adult sites are stashing exploit code inside racy .svg files

arstechnica.com

RSS Bot@lemmy.bestiver.seMB to Hacker News@lemmy.bestiver.seEnglish · 3 months ago

4

Running JavaScript from inside an image? What could possibly go wrong?

Chat

skisnow
link
fedilink
English
arrow-up
9·
3 months ago
The site doesn’t really explain quite why modern browsers still happily execute javascript from inside an .svg file? It seems like a trivial thing to patch.

Hacker News@lemmy.bestiver.se

hackernews@lemmy.bestiver.se

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: [email protected]

Community locked: only moderators can create posts. You can still comment on posts.

Posts from the RSS Feed of HackerNews.

The feed sometimes contains ads and posts that have been removed by the mod team at HN.

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

487 users / day
1.9K users / week
3.62K users / month
9.09K users / 6 months
41 local subscribers
2.93K subscribers
21.2K Posts
10.2K Comments
Modlog