Perl & PHP Vulns, Fuzzing & Parsers, Protecting Multi-Hosted Tenants, Secure Design – ASW #303

Share This Post



This article initially caught my attention just because of the fuzzing aspect. (I admittedly wasn’t familiar with Lima.)

However, what really grabbed me was the tangent on not having one, but three YAML parsers included by the project. And then seeing that one of the parsers turns the YAML into JSON for processing and back to YAML when it’s done.

Next time I ask my co-hosts about their preferred file format for human-readable configs, I’ll have to clarify that they aren’t allowed to nest formats within each other.

p.s. The CosmicString article also had an example of submitting a POST request that contained JSON that in turn contained a value that was an XML blob.



Source link

Subscribe To Our Newsletter

Get updates and learn from the best

More To Explore

Do You Want To Boost Your Business?

drop us a line and keep in touch