Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

This is unfortunate and sad but understandable. Slightly off-topic: a friend dared me to look for a sandbox CSP bypass and I discovered one using XSLT. I reported it to Mozilla few months ago, CVE-2025-8032. https://www.mozilla.org/en-US/security/advisories/mfsa2025-5...


Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: