HackerTrans
TopNewTrendsCommentsPastAskShowJobs

greenviad

no profile record

Submissions

Social sign-in is not secured: ATO on Booking.com, Codecademy and 100 more Apps

finance.yahoo.com
4 points·by greenviad·قبل 3 سنوات·1 comments

comments

greenviad
·قبل 3 سنوات·discuss
CVE-2023-28131 was published in April.

But yes, great question

I think OpenId solves some of the issues, at least for authentication, not authorization.
greenviad
·قبل 4 سنوات·discuss
Very cool. The UI is super impressive and you have intresting salaries statistic there.

One question: do you have real challenges with notebook? Currently I don't have a way to tell your site advantages without paying. I think a demo or a trial would be helpful.
greenviad
·قبل 4 سنوات·discuss
Intresting concept. As a Security researcher, I won't paste or use a real key in an unknown site. I think you mention it at the bottom of the page.

I checked the network activities and indeed my key was sent to a backend.

I would like to see something like that written only in client mode, without sending anything to any server.
greenviad
·قبل 4 سنوات·discuss
Very cool! Maybe it can be useful as an integration to kaggle.com for learning purpose. Users sumbit their notebook there and you often need to play with the inputs.