31
Oct
2017
Pour la 10ème année consécutive nous avons le plaisir de vous annoncer notre élection en tant que cercle d’excellence EC-Council.
Pour la 10ème année consécutive nous avons le plaisir de vous annoncer notre élection en tant que cercle d’excellence EC-Council.
PhpCollab is an open source web-based project management system, that enables collaboration across the Internet.
We found a file upload vulnerability in the application.
PhpCollab is an open source web-based project management system, that enables collaboration across the Internet.
We found an SQL injection in the application.
UCOPIA solutions bring together a combination of software, appliance and cloud services serving small to large customers.
More than 12,000 UCOPIA solutions are deployed and maintained by UCOPIA expert partners all over the world.
The affected asset in this report is a WiFi management appliance.
UCOPIA solutions bring together a combination of software, appliance and cloud services serving small to large customers.
More than 12,000 UCOPIA solutions are deployed and maintained by UCOPIA expert partners all over the world.
The affected asset in this report is a WiFi management appliance, in which we found a CHROOT escape and privileges escalation.
Grâce à Sysdream, du 27 au 30 Juillet, nous y étions, nous aussi, à au Caesar Palace de Las Vegas ! A Las Vegas oui mais pour la convention de hacking la plus connue dans le monde, la DEFCON.
La Nuit du Hack s’est déroulée du 24 au 25 Juin 2017. L’événement, qui accueillait cette année 2000 participants, a encore une fois été ponctué par différents challenges qui se sont succédés tout au long de la nuit. Parmi eux, un CTF privé créé et encadré par Sysdream. Retour sur ce dernier challenge phare de la 15e édition de la Nuit du Hack.
We have discovered several vulnerabilities in Google Acquisitions between November 2016 and January 2017.
Reported vulnerabilities are related to the following domains: moodstocks.com, withgoogle.com, and chromeexperiments.com.
The flaws are of two kinds: subdomain takeover (DNS) and XSS vulnerabilities.
We found a CRLF injection vulnerability, combined with session fixation, in OpenVPN Access Server, a commercial component of the famous TLS VPN, open-source, software solution.
We found multiple XSS vulnerabilities in ViMbAdmin, a Web front-end to manage virtual domains, mailboxes and aliases.