AI-powered
podcast player
Listen to all your favourite podcasts with AI-powered features
5min chapter
S4 E38 Security wtih LVH (part 4)
ClojureStream Podcast
Scripting Security
There might be some mitigations. If you're posting user stored, user generatig contents, especially when you're mixing across users a, itwould be a good idea to put that on a separ domain. The big difference is, after i get crossihd scripting, right after i get code execution with in the application, then cani steal the cooki yes. Or cani say the credential, yes. Now, there are practical advantages to its being available from jobescript and not being set as a cookie in partuar no. It's easier to make a requests to different points, for example, riht,. Because we have the cookies s, it
00:00
Transcript
Episode notes
Get the Snipd
podcast app
Unlock the knowledge in podcasts with the podcast player of the future.
AI-powered
Discover
highlights
Listen to the best highlights from the podcasts you love and dive into the full episode
Save any
moment
Hear something you like? Tap your headphones to save it with AI-generated key takeaways
Share
& Export
Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more
AI-powered
podcast player
Listen to all your favourite podcasts with AI-powered features
Discover
highlights
Listen to the best highlights from the podcasts you love and dive into the full episode