Dor Tumarkin – WindowsTechs.com

CVE-2020-35774: twitter-server XSS Vulnerability Discovered

Posted on January 7, 2021 by Dor Tumarkin

According to its official documentation, “twitter-server” is a Twitter OSS project used to provide a template from which servers at Twitter are built. It provides common application components such as an administrative HTTP server, tracing, stats, and … Continue reading CVE-2020-35774: twitter-server XSS Vulnerability Discovered→

Drupal Core: Behind the Vulnerability

Posted on December 2, 2020 by Dor Tumarkin

As you may recall, back in June, Checkmarx disclosed multiple cross-site scripting (XSS) vulnerabilities impacting Drupal Core, listed as CVE-2020-13663, followed by a more technical breakdown of the findings in late November. Today, we’re releasing de… Continue reading Drupal Core: Behind the Vulnerability→

Drupal Core: Behind the Vulnerability

Posted on November 19, 2020 by Dor Tumarkin

Earlier this year, the Checkmarx Security Research Team conducted an investigation of the new version of Drupal Core (Drupal 9) – a content management system (CMS) written in PHP – uncovering several interesting issues whose technical details are worth… Continue reading Drupal Core: Behind the Vulnerability→