Mingi Jung comments

Repositories
Issues
Comments

Results 2 comments of


                                            Mingi Jung

Create SECURITY.md

https://github.com/gnuboard/g6/issues/643 https://github.com/gnuboard/g6/issues/642 csrf 및 클릭재킹 취약점이 발생되었습니다.

Security Issues: Unintended application execution

``` import winreg import shlex import os def get_default_browser_exe_path_windows(): try: user_choice_path = r"Software\Microsoft\Windows\Shell\Associations\UrlAssociations\http\UserChoice" with winreg.OpenKey(winreg.HKEY_CURRENT_USER, user_choice_path) as key: prog_id, _ = winreg.QueryValueEx(key, "ProgId") command_path = fr"{prog_id}\shell\open\command" with winreg.OpenKey(winreg.HKEY_CLASSES_ROOT, command_path) as...