#curl gets some of the worst #AIslop "vulnerabilities" reported to it via Hackerone: Here we have a fake 90s exploit assuming executable stack and x86 arch. Someone seriously passing this as their own research is stupid beyond belief.
curl disclosed on HackerOne: Use of Deprecated strcpy() with...
Discovery Method Step 1: Initial Security Scan ``` # Find all files using dangerous string functions find src/ -name "*.c" -exec grep -l "strcpy\|strcat\|sprintf\|gets" {} \; # OUTPUT: #...HackerOne
This entry was edited (6 days ago)