Security Research

Wednesday, 14 August 2013by Amir Azam

DotNetNuke is vulnerable to an Cross-Site Request Forgery (CSRF) attack. As the ".DOTNETNUKE" cookie does not expire

Discover the critical security flaw in DotNetNuke (DNN) applications where the ".DOTNETNUKE" cookie's persistent nature and lack of idle timeout fa ....

Wednesday, 14 August 2013by Amir Azam

DotNetNuke (DDN) is vulnerable to a Persistent Cross-Site Scripting (XSS) / HTML injection attack

Explore the vulnerability in DotNetNuke (DNN) that exposes the platform to Persistent Cross-Site Scripting (XSS) and HTML injection attacks, partic ....

Tuesday, 13 August 2013by Amir Azam

DotNetNuke (DDN) is vulnerable to a redirect 'Phishing' attack

Discover the vulnerability in DotNetNuke (DNN) that makes it susceptible to a redirect 'Phishing' attack. This security blog uncovers how a specifi ....

9 February

Hacking ChatGPT and Bard: Enter Prompt Injection Attacks

1 February

Remote Code Execution on SafeScan Biometric IoT Devices

30 July

DotNetNuke is vulnerable to an Cross-Site Request Forgery (CSRF) attack. As the ".DOTNETNUKE" cookie does not expire

DotNetNuke (DDN) is vulnerable to a Persistent Cross-Site Scripting (XSS) / HTML injection attack

DotNetNuke (DDN) is vulnerable to a redirect 'Phishing' attack

Categories

Recent Posts

Hacking ChatGPT and Bard: Enter Prompt Injection Attacks

Remote Code Execution on SafeScan Biometric IoT Devices

Pitfalls of Content-Type Filtering for Apache Struts 2 Vulnerability CVE-2017-5638

Authors

Security Research

Read ProCheckUp’s 'GDPR Bytes' article

BSides London conference 2016