Security Research

Friday, 24 April 2009by Richard Brain

XSS with mod_perl perl_status utility

The Mod_perl server's perl-status utility, which displays the server's current status and configuration information, has a Cross-site Scripting (XS ....

Friday, 30 January 2009by Richard Brain

XSS on Novell GroupWise WebAccess

Novell GroupWise WebAccess is susceptible to a non-persistent Cross-Site Scripting (XSS) vulnerability through POST requests, despite filtering GET ....

Wednesday, 14 January 2009by Adrian Pastor

XSS on Cisco IOS HTTP Server

The Cisco IOS HTTP server is vulnerable to Cross-Site Scripting (XSS) attacks due to improper handling of invalid parameters by the "/ping" server- ....

Friday, 14 November 2008by Adrian Pastor

Authentication Bypass, Passwords Leakage and SNMP Injection on 3Com AP 8760

The 3Com AP 8760 utilizes an HTTP authentication mechanism that relies solely on the administrator's source IP address for authentication, without ....

9 February

Hacking ChatGPT and Bard: Enter Prompt Injection Attacks

1 February

Remote Code Execution on SafeScan Biometric IoT Devices

30 July

XSS with mod_perl perl_status utility

XSS on Novell GroupWise WebAccess

XSS on Cisco IOS HTTP Server

Authentication Bypass, Passwords Leakage and SNMP Injection on 3Com AP 8760

Categories

Recent Posts

Hacking ChatGPT and Bard: Enter Prompt Injection Attacks

Remote Code Execution on SafeScan Biometric IoT Devices

Pitfalls of Content-Type Filtering for Apache Struts 2 Vulnerability CVE-2017-5638

Authors

Security Research

Read ProCheckUp’s 'GDPR Bytes' article

BSides London conference 2016