The 0-day in the popular jQuery plugin and its forks has been in plain sight for 3 years via public YouTube exploit tutorials with copy/paste steps. Actively exploited. Yet for 3 years the developer, sys admins, and security community was unaware. 🤔😪😤 https://zd.net/2CUnToG
Invite-only Mastodon server run by the main developers of the project It is not focused on any particular niche interest - everyone is welcome as long as you follow our code of conduct!