Actualités

janvier 15, 2018

The Hershell project is a Go source code that is able to generate a reverse shell payload that is cross-platform and able to integrate with the Metasploit framework, among several...

janvier 4, 2018

Le projet Hershell a pour but de réaliser un payload de type reverse shell multi-plate-forme, en utilisant un code source unique réalisé en Go. Il peut ainsi s'intégrer au *framework*...

janvier 2, 2018

Gespage is web solution providing a printer portal. The web application does not properly filter several parameters sent by users, allowing XSS code injection

janvier 2, 2018

The web application does not properly filter several parameters sent by users, allowing authenticated SQL code injection (Stacked Queries - comment).

décembre 22, 2017

We have been looking for a quick and universal signature which could work on all Windows versions during DMA attacks. This article describes how we achieved this along this the...

novembre 20, 2017

The FortiWeb appliance discloses the SNMP version 3 user's password. The web page displayed by the appliance contains the password in clear text.

novembre 20, 2017

Odoo is a well-known ERP open source software. We found an open redirection vulnerability in the software.

septembre 29, 2017

PhpCollab is an open source web-based project management system, that enables collaboration across the Internet. We found a file upload vulnerability in the application.

septembre 29, 2017

PhpCollab is an open source web-based project management system, that enables collaboration across the Internet. We found an SQL injection in the application.

septembre 29, 2017

UCOPIA solutions bring together a combination of software, appliance and cloud services serving small to large customers. More than 12,000 UCOPIA solutions are deployed and maintained by UCOPIA expert partners...