Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
willis936
on Sept 14, 2021
|
parent
|
context
|
favorite
| on:
NSO Group iMessage Zero-Click Exploit Captured in ...
Discourse avatars point to a page with a .png extension regardless of what the actual file is (jpg, gif, or svg). Parsing file headers should not be a dangerous operation and in my opinion is the right thing to do.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
