December 14, 2015
Published by Sandeep Kamble at December 14, 2015

Joomla Remote Code Execution Vulnerability Fixed

The Joomla team just released a new Joomla version 3.4.6 to fix serious vulnerability, i.e. remote code execution. Directly from the Joomla announcement: Browser information is not […]
Sandeep KambleSandeep Kamble December 14, 2015
November 26, 2015
Published by Amit Kumar at November 26, 2015

Protected: It’s not Easy being a CISO these Days!

There is no excerpt because this is a protected post.
Amit KumarAmit Kumar November 26, 2015
November 5, 2015
Published by Sandeep Kamble at November 5, 2015

PreAuth PHP Object Injection Critical Vulnerability in vBulletin Versions 5.1.4 to 5.1.9

vBulletin on 03 Nov 2015 released security patches. The vBulletin 5.1.4 to 5.1.9 is vulnerable to PHP Object injection, where attacker can take control of the […]
Sandeep KambleSandeep Kamble November 5, 2015
October 26, 2015
Published by Amit Kumar at October 26, 2015

Tool to Detect SQL injection vulnerability in Joomla 3.2 to 3.4.4 versions!

It pleases us to announce the release of our new tool that we create in order to detect SQL injection vulnerability in the affected versions of […]
Amit KumarAmit Kumar October 26, 2015
July 15, 2015
Published by Sandeep Kamble at July 15, 2015

CVE-2015-2652 – Unauthenticated File Upload in Oracle E-business Suite.

During my regular penetration testing job, I unravelled an interesting vulnerability of Unauthenticated File Upload in Oracle E-business Suite 0-day vulnerability. This particular Upload Bug can be […]
Sandeep KambleSandeep Kamble July 15, 2015
March 27, 2015
Published by Sandeep Kamble at March 27, 2015
WordPress Plugin – Revslider update captions CSS file critical vulnerability
Today was another day at work for SecureLayer7 to recover our client’s defaced website. And bang!! I think I hit upon a nasty vulnerability of a […]
Sandeep KambleSandeep Kamble March 27, 2015
March 13, 2015
Published by Sandeep Kamble at March 13, 2015

Reason Why Companies should Outsource Vulnerability & Penetration Testing Services

If you are looking to manage everything that relates to web security of your company on your own, then this blog is not for you. On […]
Sandeep KambleSandeep Kamble March 13, 2015
January 29, 2015
Published by Sandeep Kamble at January 29, 2015

CVE-2015-0235 – How to secure against Glibc Ghost Vulnerability

CVE-2015-0235 Ghost (glibc gethostbyname buffer overflow) Vulnerability is serious cause for all Linux servers. In effect, this vulnerability is leveraged to execute remote end code execution […]
Sandeep KambleSandeep Kamble January 29, 2015
Prev page
1...345
Enable Notifications    OK No thanks