Menu

Latest articles

BT3 – Blue Team Training Toolkit
Blue Team Training Toolkit (BT3) is software for defensive security training, which will bring your network analysis training sessions, incident… The [...]
JasPer CVE-2018-20584 Denial of Service Vulnerability
JasPer is prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause a denial-of-service condition. JasPer 2.0.14 and prior [...]
Juniper Secure Access SSL VPN Privilege Escalation
McAfee True Key 5.1.173.1 Privilege Escalation
Google Chrome 70.0.3538.77 Cross Site Scripting / Man-In-The-Middle
Chrome: malicious WPAD server can proxy localhost (leading to XSS in http://localhost:*/*)
Mozilla Firefox Picture Drag And Drop Security Bypass
Proof of concept exploit for a Mozilla Firefox picture drag and drop security bypass vulnerability. Tested on versions 3.6.10 up to 62.0.3. Password to [...]
Billion ADSL Router 400G 20151105641 Cross Site Scripting
  Billion ADSL Router 400G 20151105641 suffers from a cross site scripting vulnerability.
Flippa Marketplace Clone 1.0 SQL Injection
Flippa Marketplace Clone version 1.0 suffers from a remote SQL injection vulnerability.
Mozilla Firefox and Firefox ESR Remote Code Execution and Information Disclosure Vulnerabilities
Mozilla Firefox and Firefox ESR are prone to a remote code-execution vulnerability and an information-disclosure vulnerability; fixes are available.
WordPress Contact Form 7 International SMS Integration 1.2 XSS
  WordPress Contact Form 7 International SMS Integration plugin version 1.2 suffers from a cross site scripting vulnerability.