DEFCON 201<p>Rising <a href="https://hostux.social/tags/hacker" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>hacker</span></a> <span class="h-card" translate="no"><a href="https://coolmathgam.es/@eva" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>eva</span></a></span> has discovered <a href="https://hostux.social/tags/CVE" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CVE</span></a>-2024-45489 which completely compromises <span class="h-card" translate="no"><a href="https://mastodon.social/@arcbrowser" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>arcbrowser</span></a></span> <a href="https://hostux.social/tags/arcbrowser" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>arcbrowser</span></a>:</p><p><a href="https://kibty.town/blog/arc/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">kibty.town/blog/arc/</span><span class="invisible"></span></a></p><p><a href="https://hostux.social/tags/firebase" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>firebase</span></a> <a href="https://hostux.social/tags/javascript" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>javascript</span></a> <a href="https://hostux.social/tags/objectivec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>objectivec</span></a> <a href="https://hostux.social/tags/firestore" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>firestore</span></a> <a href="https://hostux.social/tags/mastodon" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>mastodon</span></a> <a href="https://hostux.social/tags/fediverse" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>fediverse</span></a> <span class="h-card" translate="no"><a href="https://defcon.social/@defcon" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>defcon</span></a></span></p>
Recent searches
No recent searches
Search options
Only available when logged in.
shakedown.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
A community for live music fans with roots in the jam scene. Shakedown Social is run by a team of volunteers (led by @clifff and @sethadam1) and funded by donations.
Administered by:
Server stats:
252active users
shakedown.social: About · Status · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.3.7
#Firestore
0 posts · 0 participants · 0 posts today
🧿🪬🍄🌈🎮💻🚲🥓🎃💀🏴🛻🇺🇸<p>Major <a href="https://mastodon.social/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>security</span></a> flaw discovered in <a href="https://mastodon.social/tags/Arc" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Arc</span></a> <a href="https://mastodon.social/tags/Browser" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Browser</span></a></p><p>* arc boosts can contain arbitrary <a href="https://mastodon.social/tags/javascript" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>javascript</span></a><br>* arc boosts are stored in <a href="https://mastodon.social/tags/firestore" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>firestore</span></a> <br>* the arc browser gets which boosts to use via the creatorID field<br>* we can arbitrarily chage the creatorID field to any user id</p><p>> thus, if we were to find a way to easily get someone elses user id, we would have a full attack chain</p><p>Spoiler alert you gave out your creatorID when you sent the invite link out on social media 😂</p><p><a href="https://kibty.town/blog/arc/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">kibty.town/blog/arc/</span><span class="invisible"></span></a></p><p><a href="https://mastodon.social/tags/firebase" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>firebase</span></a></p>
ExploreLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
Create accountLoginDrag & drop to upload