Filter: Vulnerability

DevTools leak information about CSP violations

2024-06-30 by Yannik Marchand

This post describes a minor vulnerability in Firefox, that Aidan Stephenson and I discovered while playing DiceCTF. In short, an attacker that had access to an HTML injection vulnerability could leak secrets from this page if the victim had the DevTools open, even with a strict content security in place … Read more...

Vulnerability

Hacking Hundreds of Wii Us at Once

2024-05-26 by Yannik Marchand

There used to be a flaw that could be used to gain code execution on hundreds of consoles at once. Almost all 3DS, Wii U and Switch games with online features depend on a single library for online play: NEX. This library happened to be vulnerable to a stack overflow … Read more...

Nintendo Vulnerability