Benson Liu

icon indicating a website link https://www.bliu.tech/ icon indicating an email [email protected]

icon company @microsoft | @pbrucla | CS @ UCLA icon location Los Angeles, CA icon location Security Researcher Intern @ Microsoft | CTF @ Psi Beta Rho | CS @ UCLA

Results 4 issues of Benson Liu

Improving Contributions to CTF Time

CTF Time is such a pivotal site to the CTF/Cybersecurity community globally. Yet, there always seems to be not enough support to help fix bugs, improve features, etc. for the...

fix: small typo

1 comment

Quick typo fix of `attribute`.

Incorrect CRC32 Checksum in `PNG.png`

For the following graphic in [`/binary/PNG.png`](https://github.com/corkami/pics/blob/master/binary/PNG.png) the CRC32 Checksum is incorrect for the `IEND` chunk. ![PNG](https://github.com/corkami/pics/assets/67720812/89cce0aa-5194-4a16-8d84-31eb14ef5797) The CRC32 checksum is only calculated on the header type for the IEND chunk...

Arbitrary Same-Origin Stored XSS on React + HTML Outputs

3 comment

Initially disclosed to @mizlan privately. Opening this issue for easier tracking and documentation. ## Vulnerability On https://editor.uclaacm.com, there is an arbitrary [Same-Origin](https://developer.mozilla.org/en-US/docs/Web/Security/Same-origin_policy) [Stored XSS](https://owasp.org/www-community/attacks/xss/#stored-xss-attacks) for outputs of the editor specifically...

bug
security