Y
Hacker News
new
|
ask
|
show
|
jobs
by
ikmckenz
360 days ago
Related:
https://arstechnica.com/gadgets/2025/05/open-source-project-...
1 comments
moyix
360 days ago
The main difference is that all of the vulnerabilities reported here are real, many quite critical (XXE, RCE, SQLi, etc.). To be fair there were definitely a lot of XSS, but the main reason for that is that it's a really common vulnerability.
link
ikmckenz
359 days ago
All of them are real? You have a 100% rate of reports closed as valid?
link