Compromising an unreachable Solr server with CVE-2013-6397
Compromising an unreachable Solr server with CVE-2013-6397 I recently did a pentest where I compromised a Solr server located several...
Read more →Category: Mix
VMware NSX Manager Vulnerabilities being actively exploited
The Wallarm Detect team has found exploit attempts in the wild of CVE-2022-31678 and CVE-2021-39144. The original vulnerabilities were found...
Read more →
How to conduct a basic security code review | Security Simplified
How to conduct a basic security code review | Security Simplified Source link
Read more →
Two solutions for the January 2021 Initigriti XSS Challenge
Two solutions for the January 2021 Initigriti XSS Challenge Source link
Read more →![[tl;dr sec] #170 - Prototype Pollution, Fuzzing, SOC Metrics](https://cybernoz.com/wp-content/uploads/2023/03/tldr-sec-170-Prototype-Pollution-Fuzzing-SOC-Metrics-scaled.jpg "[tl;dr sec] #170 - Prototype Pollution, Fuzzing, SOC Metrics 16")
[tl;dr sec] #170 – Prototype Pollution, Fuzzing, SOC Metrics
Hey there, I hope you’ve been doing well! Focusing on the Right Stuff I was going to write you a...
Read more →
Raidforums owner arrested 🚓 FBI have taken on the case 🚓
Raidforums owner arrested 🚓 FBI have taken on the case 🚓 Source link
Read more →
CVE-2023-27537: HSTS double-free
curl disclosed a bug submitted by kurohiro: https://hackerone.com/reports/1897203 Source link
Read more →
Practical Junior Malware Researcher (PJMR) Exam Overview
Practical Junior Malware Researcher (PJMR) Exam Overview Source link
Read more →
Mullvad’s FREE DNS over HTTPS service is a no-brainer for these reasons – YouTube
Mullvad’s FREE DNS over HTTPS service is a no-brainer for these reasons Source link
Read more →
Welcoming new members on BugBountyHunter.com | by Sean (zseano)
We’re finally happy to announce we have re-opened membership on BugBountyHunter.com and we’re ready to welcome new members. https://www.bugbountyhunter.com/ However...
Read more →
Stored XSS in Paytium 3.0.13 WordPress Plugin | by Jonathan Bouman
Proof of concept BackgroundWith a 60% market share WordPress is the most used CMS at this moment. Out of the...
Read more →
Weaponising Unicode for Fun and Profit | by Eugene Lim | CSG @ GovTech
Plus a tool and tips for defenders. In this article, I will describe how Unicode — the encoding standard behind...
Read more →