node-serialize Remote Code Execution Web Shell
Whitepaper called 'node-serialize' Remote Code Execution - Web Shell. Written in Turkish.
View ArticleICE Hrm 29.0.0.OS Cross Site Scripting / Session Fixation
ICE Hrm version 29.0.0.OS suffers from cross site scripting and session fixation vulnerabilities.
View ArticleICE Hrm 29.0.0.OS Cross Site Request Forgery
ICE Hrm version 29.0.0.OS suffers from a cross site request forgery vulnerability.
View ArticleNetwork Pivoting HackerEnv
Brief whitepaper that goes through proxy, ssh, and vpn pivoting during an attack. Written in Arabic.
View ArticleICE Hrm 29.0.0.OS Cross Site Scripting
ICE Hrm version 29.0.0.OS suffers from a persistent cross site scripting vulnerability.
View ArticleOpenEMR 5.0.1.7 Path Traversal
OpenEMR version 5.0.1.7 suffers from a path traversal vulnerability.
View ArticleiFunbox 4.2 Unquoted Service Path
iFunbox version 4.2 suffers from an unquoted service path vulnerability.
View ArticleProtectimus SLIM NFC Time Manipulation
When analyzing the Protectimus SLIM TOTP hardware token, Matthias Deeg found out that the time used by the Protectimus SLIM TOTP hardware token can be set independently from the used seed value for...
View ArticleUbuntu Security Notice USN-4992-1
Ubuntu Security Notice 4992-1 - Máté Kukri discovered that the acpi command in GRUB 2 allowed privileged users to load crafted ACPI tables when secure boot is enabled. An attacker could use this to...
View ArticleTrojan-Dropper.Win32.Googite.b MVID-2021-0254 Code Execution
Trojan-Dropper.Win32.Googite.b malware suffers from a code execution vulnerability.
View Article
