多款 MacOS 知名开发运维工具遭供应链投毒攻击
Revive Adserver
使用弱算法
https://hackerone.com/reports/1306942
GitLab
GitLab存储xss一枚
GitLab disclosed on HackerOne: Stored XSS in main page of a project...
Curl
CVE-2021-22945 UAF漏洞
https://hackerone.com/reports/1269242
Zivver
利用更换IP来绕过速率限制
https://hackerone.com/reports/889246
https://www.mdsec.co.uk/2021/09/nsa-meeting-proposal-for-proxyshell/
Facebook泄漏用户手机号/邮箱漏洞
https://iamsaugat.medium.com/a-facebook-bug-that-exposes-email-phone-number-to-your-friends-a980d24e5ea8
