Security Research

Wednesday, 22 October 2008by Adrian Pastor

Research Paper: Achieving Persistent HTML Injection via SNMP on Embedded Devices

Gaining SNMP write access is typically seen as a high-risk security breach, making the concept of SNMP injection seem redundant at first glance, as ....

Thursday, 9 October 2008by Adrian Pastor

Unauthenticated SQL Injection, XSS and Username Enumeration on DPSnet Case Progress

Progress, an internet-based platform, facilitates real-time tracking of case management details by various stakeholders, including clients and lega ....

Thursday, 21 August 2008by Richard Brain

Microsoft ASP.NET ValidateRequest filters can be bypassed allowing XSS and HTML injection attacks

ProCheckUp discovered a method to bypass ASP .NET ValidateRequest filters, enabling XSS and HTML injection attacks even on systems updated with the ....

Thursday, 21 August 2008by Richard Brain

Research Paper: Bypassing ASP .NET "ValidateRequest" for Script Injection Attacks

The Microsoft .NET framework's ValidateRequest feature, integral to ASP.NET since version 1.1, aims to thwart web input validation attacks like HTM ....

9 February

Hacking ChatGPT and Bard: Enter Prompt Injection Attacks

1 February

Remote Code Execution on SafeScan Biometric IoT Devices

30 July

Research Paper: Achieving Persistent HTML Injection via SNMP on Embedded Devices

Unauthenticated SQL Injection, XSS and Username Enumeration on DPSnet Case Progress

Microsoft ASP.NET ValidateRequest filters can be bypassed allowing XSS and HTML injection attacks

Research Paper: Bypassing ASP .NET "ValidateRequest" for Script Injection Attacks

Categories

Recent Posts

Hacking ChatGPT and Bard: Enter Prompt Injection Attacks

Remote Code Execution on SafeScan Biometric IoT Devices

Pitfalls of Content-Type Filtering for Apache Struts 2 Vulnerability CVE-2017-5638

Authors

Security Research

Read ProCheckUp’s 'GDPR Bytes' article

BSides London conference 2016