Security Research

Wednesday, 9 June 2010by Richard Brain

Juniper Secure Access series (Juniper IVE) XSS

Procheckup discovered a Cross-site Scripting (XSS) vulnerability in the web interface of Juniper's Instant Virtual Extranet (IVE). This vulnerabili ....

Thursday, 20 May 2010by Richard Brain

Unauthenticated File Retrieval (traversal) within 3Com's IMC (Intelligent Management Center)

3Com's Intelligent Management Centre (iMC) offers professional management for both 3Com and third-party network devices, typically accessed via a w ....

Wednesday, 3 February 2010by Jan FryRichard Brain

XSS on CommonSpot server

The Commonspot server has been identified as vulnerable to a vanilla Cross-site Scripting (XSS) attack, particularly within the server-side script ....

Friday, 6 November 2009by Richard Brain

XSS vulnerabilities and Webroot disclosure within BBC Betsie

Betsie, a tool hosted on the BBC's website, is susceptible to Cross-Site Scripting (XSS) attacks due to the injection of malicious characters into ....

9 February

Hacking ChatGPT and Bard: Enter Prompt Injection Attacks

1 February

Remote Code Execution on SafeScan Biometric IoT Devices

30 July

Juniper Secure Access series (Juniper IVE) XSS

Unauthenticated File Retrieval (traversal) within 3Com's IMC (Intelligent Management Center)

XSS on CommonSpot server

XSS vulnerabilities and Webroot disclosure within BBC Betsie

Categories

Recent Posts

Hacking ChatGPT and Bard: Enter Prompt Injection Attacks

Remote Code Execution on SafeScan Biometric IoT Devices

Pitfalls of Content-Type Filtering for Apache Struts 2 Vulnerability CVE-2017-5638

Authors

Security Research

Read ProCheckUp’s 'GDPR Bytes' article

BSides London conference 2016