
Behind the Firewall ft. Sean Rosado
Not everything is a critical issue, but each deserves a closer look. During a recent engagement, Sean flagged a cross-site scripting vulnerability. Given the nature of the application and the use case for the affected functionality, the client believes the finding was a false positive. They agreed to schedule a session to dig deeper.Sean spent some time before the session building an additional proof of concept that further demonstrated the…



