Security Research

Tuesday, 8 January 2008by

XSS on Sun Java System Identity Manager 6.0/7.x login page "lang" parameter

Vulnerability found:
11 June 2007

Vendor informed:
18 June 2007

Severity level:

Wednesday, 12 December 2007by Adrian PastorAmir Azam

0

XSS on Apache HTTP Server 413 error pages via malformed HTTP method

Apache HTTP Server exhibits a vulnerability in handling malformed HTTP methods, leading to potential Cross-Site Scripting (XSS) attacks via the 413 ....

Security Cyber Security

Wednesday, 5 December 2007by Jan FryRichard BrainAdrian Pastor

0

Multiple vulnerabilities on Absolute News Manager.NET 5.1 including file retrieval and SQL injection

Absolute News Manager.NET 5.1 is found to be vulnerable to multiple security issues, including unauthenticated file retrieval via directory travers ....

Security Cyber Security

Wednesday, 28 November 2007by Adrian PastorJan Fry

0

Cross-site Scriptiang (XSS) / HTML injection on F5 FirePass 4100 SSL VPN 'my.activation.php3' server-side script

The F5 Networks FirePass 4100 SSL VPN has been identified as vulnerable to Cross-Site Scripting (XSS) attacks through the "my.activation.php3" scri ....

Security Cyber Security

<<

<

>

>>

Categories

Compliance (0)

Malware (0)

Security (0)

Charity (0)

GDPR (0)

Forensics (0)

Social Engineering (0)

Technology (0)

Cyber Security (0)

Training and Learning (0)

PCI DSS (0)

Artificial Intelligence (0)

SME (0)

Governance, Risk, and Compliance (0)

Compliance (0)

Malware (0)

Security (50)

Charity (0)

GDPR (0)

Forensics (0)

Social Engineering (0)

Technology (0)

Cyber Security (45)

Training And Learning (0)

PCI DSS (0)

Artificial Intelligence (1)

SME (0)

Governance, Risk, And Compliance (0)

Opportunities (0)

Recent Posts

9 February
Hacking ChatGPT and Bard: Enter Prompt Injection Attacks

1 February
Remote Code Execution on SafeScan Biometric IoT Devices

30 July
Pitfalls of Content-Type Filtering for Apache Struts 2 Vulnerability CVE-2017-5638

Authors

ProCheckUp (0)

Paul Bissette (0)

Thomas Rusbridger (0)

Procheckup Team (0)

Richard Brain (0)

Guy Newman (0)

Dimitrios Fragkiskatos (0)

Max de Dumast (0)

Nga Hoang (0)

David Shanahan (0)

Edd Jones (0)

David Tyler (0)

Connor Cracknell (0)

Cristian Ciomaga (0)

Wei Hou Low (0)

Brendan Yeo (0)

Daniel Byrne (0)

Rebecca Dunlop (0)

Sean Then (0)

Jan Fry (7)

Richard Brain (28)

ProCheckUp (2)

Paul Bissette (0)

ProCheckUp Team (0)

Dimitrios Fragkiskatos (0)

Max De Dumast (1)

David Shanahan (0)

Edd Jones (0)

Connor Cracknell (0)

Amir Azam (6)

Daniel Byrne (1)

Rolando Fuentes (1)

Adrian Pastor (15)

XSS on Sun Java System Identity Manager 6.0/7.x login page "lang" parameter

XSS on Apache HTTP Server 413 error pages via malformed HTTP method

Multiple vulnerabilities on Absolute News Manager.NET 5.1 including file retrieval and SQL injection

Cross-site Scriptiang (XSS) / HTML injection on F5 FirePass 4100 SSL VPN 'my.activation.php3' server-side script

Categories

Recent Posts

Hacking ChatGPT and Bard: Enter Prompt Injection Attacks

Remote Code Execution on SafeScan Biometric IoT Devices

Pitfalls of Content-Type Filtering for Apache Struts 2 Vulnerability CVE-2017-5638

Authors

Security Research

Read ProCheckUp’s 'GDPR Bytes' article

BSides London conference 2016