Security Research

Friday, 14 November 2008by Adrian Pastor

Authentication Bypass, Passwords Leakage and SNMP Injection on 3Com AP 8760

The 3Com AP 8760 utilizes an HTTP authentication mechanism that relies solely on the administrator's source IP address for authentication, without ....

Wednesday, 22 October 2008by Adrian Pastor

Research Paper: Achieving Persistent HTML Injection via SNMP on Embedded Devices

Gaining SNMP write access is typically seen as a high-risk security breach, making the concept of SNMP injection seem redundant at first glance, as ....

Thursday, 9 October 2008by Adrian Pastor

Unauthenticated SQL Injection, XSS and Username Enumeration on DPSnet Case Progress

Progress, an internet-based platform, facilitates real-time tracking of case management details by various stakeholders, including clients and lega ....

Thursday, 21 August 2008by Richard Brain

Microsoft ASP.NET ValidateRequest filters can be bypassed allowing XSS and HTML injection attacks

ProCheckUp discovered a method to bypass ASP .NET ValidateRequest filters, enabling XSS and HTML injection attacks even on systems updated with the ....

9 February

Hacking ChatGPT and Bard: Enter Prompt Injection Attacks

1 February

Remote Code Execution on SafeScan Biometric IoT Devices

30 July

Authentication Bypass, Passwords Leakage and SNMP Injection on 3Com AP 8760

Research Paper: Achieving Persistent HTML Injection via SNMP on Embedded Devices

Unauthenticated SQL Injection, XSS and Username Enumeration on DPSnet Case Progress

Microsoft ASP.NET ValidateRequest filters can be bypassed allowing XSS and HTML injection attacks

Categories

Recent Posts

Hacking ChatGPT and Bard: Enter Prompt Injection Attacks

Remote Code Execution on SafeScan Biometric IoT Devices

Pitfalls of Content-Type Filtering for Apache Struts 2 Vulnerability CVE-2017-5638

Authors

Security Research

Read ProCheckUp’s 'GDPR Bytes' article

BSides London conference 2016