Sandeep Kamble

February 16, 2016

Umbraco – The open source ASP.NET CMS Multiple Vulnerabilities

Recently I got an assignment where I had to work on the Umbraco application – a free Open Source Content Management System built on the ASP.NET […]
January 27, 2016

cPanel releases security patches for 20 critical vulnerabilities

The cPanel security team has identified several security concerns in their control panel software. They have also released patches to address all these security concerns with […]
December 14, 2015

Joomla Remote Code Execution Vulnerability Fixed

The Joomla team just released a new Joomla version 3.4.6 to fix serious vulnerability, i.e. remote code execution. Directly from the Joomla announcement: Browser information is not […]
December 1, 2015

HostingCon 2015 Mumbai, India

Event date:  11-12 December Venue: Mumbai A team of SecureLayer7 security experts will be heading out to Mumbai in Dec 2015 for Hostingcon 2015 . Our […]
November 5, 2015

PreAuth PHP Object Injection Critical Vulnerability in vBulletin Versions 5.1.4 to 5.1.9

vBulletin on 03 Nov 2015 released security patches. The vBulletin 5.1.4 to 5.1.9 is vulnerable to PHP Object injection, where attacker can take control of the […]
October 23, 2015

How to Fix Joomla 3.2 to 3.4.4 Core – SQL Injection vulnerability

If you are a Joomla user, just UPGRADE it to the latest version, here or download new installation package here. Joomla officials have announced a new release Joomla! […]
July 15, 2015

CVE-2015-2652 – Unauthenticated File Upload in Oracle E-business Suite.

During my regular penetration testing job, I unravelled an interesting vulnerability of Unauthenticated File Upload in Oracle E-business Suite 0-day vulnerability. This particular Upload Bug can be […]
March 27, 2015
WordPress Plugin – Revslider update captions CSS file critical vulnerability
Today was another day at work for SecureLayer7 to recover our client’s defaced website. And bang!! I think I hit upon a nasty vulnerability of a […]
Enable Notifications.    Ok No thanks