Page 1 of 1
How to steal a developers local database
Posted: Thu Sep 01, 2016 8:59 pm
by morganism
DNS rebinding, and other requests.
http://bouk.co/blog/hacking-developers/
Bug or feature?
Re: How to steal a developers local database
Posted: Thu Sep 01, 2016 10:45 pm
by Thrawn
This is precisely why we have the default ABE rule, which forbids external websites to send requests to local addresses.