Léo M. - GrayR0ot

icon company SG icon location Paris icon location Software Engineer at SG

Results 5 comments of Léo M. - GrayR0ot

[BUG] Found Xss Stored vuln in Administration page

I just successfully hijacked a customer Dashboard but if you think it's normal letting this kind of vulnerability this is your choice.

API placeholders seems to be not working

I just solved the issue, there is an ```setAllowPlaceholders(boolean)``` function that is not visible in javadoc/wiki. But it is working

[Bug] CloudFlare protection (https://nowsecure.nl) bypass on local laptop (Windows 11, display), but not on remote server (Debian + xvfb)

Same problem, but in my case windows 11 not works too: ``` const puppeteer = require('puppeteer-extra') const StealthPlugin = require('puppeteer-extra-plugin-stealth') puppeteer.use(StealthPlugin()) const {executablePath} = require('puppeteer') puppeteer.launch({ executablePath: executablePath(), headless: "new",...

[Bug] CloudFlare protection (https://nowsecure.nl) bypass on local laptop (Windows 11, display), but not on remote server (Debian + xvfb)

So, actually there is nothing that can bypass UAM ?

Add Cookie API

Amazing PR :)