macro-pdfviewer is a PDF Viewer Macro for XWiki using Mozilla pdf.js. The width parameter of the PDF viewer macro isn't properly escaped, allowing XSS for any user who can edit a page. XSS can impact the confidentiality, integrity and availability of the whole XWiki installation when an admin visits the page with the malicious code. This is fixed in 2.5.6.
#COMMUNITY

Unleash your creativity with Hacklido. where content meets connection! Discover a world where you can freely express your ideas and connect with your future biggest fans. With Hacklido, you don't need to build everything from scratch – we provide the platform, and you bring the magic.

A community for sharing and discussing novel web security research.

A global community of people helping each other with their Security, Technology and Technical Support questions.

Hackaday.io is the world's largest collaborative hardware development community.

Reduce the risk of a security incident by working with the world’s largest community of trusted ethical hackers. HackerOne offers bug bounty, VDP, security assessments, attack surface management, and pentest solutions.

Community Of Hackers & Security Professionals.

vsociety is a social community for security professionals to collaborate on vulnerability solutions and network with security peers.

Cybersecurity for public good. We are training the next generation of cyber leaders and safeguarding community organizations.

A subreddit dedicated to hacking and hackers. Constructive collaboration and learning about exploits, industry standards, grey and white hat hacking, new hardware and software hacking technology, sharing ideas and suggestions for small business and personal security.

NEW

The Largest Password Recovery Community. Join our (discord) community, fully geared towards recovering the plains of hash algorithms. Fully supports non-binary hashcat algorithms. MD5, SHA1, ZIP, Bitcoin, Ethereum, Dogecoin Wallets - we have it all.

CheckMates is the Cyber Security Community that brings Check Point users, experts, and R&D together for freewheeling discussions about Check Point.

A place to ask questions and share advice about the security clearance process.

An internationally recognized cybersecurity event series providing the most technical and relevant information security research.

Multiplayer Game Hacking and Cheats. We encourage an open, free and collaborative environment for cheating in games. We supply content and information for game cheats and game hacking through our forum, download database, and structured tutorials.

A subreddit dedicated to red and blue teaming content.

A question and answer site for researchers and developers who explore the principles of a system through analysis of its structure, function, and operation.

Security - Free source code and tutorials for Software developers and Architects."

NEW

Tackle tech challenges together. Join our IT community to connect, share your expertise, get answers, stay up with trends, advance your career, and keep IT fun!

This subreddit is for technical professionals to discuss cybersecurity news, research, threats, etc.