endless vulnerabilities - jscancer - Javascript crap (relatively small)
 (HTM) git clone git://git.codemadness.org/jscancer
 (DIR) Log
 (DIR) Files
 (DIR) Refs
 (DIR) README
 (DIR) LICENSE
       ---
 (DIR) commit ba476d77a16b011c02195bcd05570f4bc0886c47
 (DIR) parent b4ee6b2cb8c463a9127067e53c704f81d39f4340
 (HTM) Author: Hiltjo Posthuma <hiltjo@codemadness.org>
       Date:   Wed, 27 Sep 2023 18:58:57 +0200
       
       endless vulnerabilities
       
       Diffstat:
         M RANT_WEBTIPS                        |       4 ++++
       
       1 file changed, 4 insertions(+), 0 deletions(-)
       ---
 (DIR) diff --git a/RANT_WEBTIPS b/RANT_WEBTIPS
       @@ -220,6 +220,10 @@ Misc scary things:
          https://github.com/joevennix/lan-js/tree/master/src
        - Navigator beacon: https://w3c.github.io/beacon/
        - Hyperlink auditing (<a ping>): https://lists.w3.org/Archives/Public/public-html/2009Dec/0184.html
       +- Protocol handler leaks by using an image and CSS:
       +  https://www.fortinet.com/blog/threat-research/leaking-browser-url-protocol-handlers
       +- Leak screen data by overlaying a SVG and time the rendering:
       +  https://www.hertzbleed.com/gpu.zip/
        
        This is what happens when you let advertising agencies (such as Google) help
        write web standards.