Writings.

  1. CVE-2018-19370 - Yoast SEO >= 9.1 Race Condition / Command Execution CVE

    WordPress SEO (Yoast SEO) plugin versions 9.1 and below suffer from a race condition that allows for command execution. Product Affected: Yoast SEO Wordpress Plugin. Version Affected: Plugin versions 9.1 and below. Active installations: 5+ million Vulnerability Description: A Race condition vulnerability in unzip_file in admin/import/…

  2. RedyOps - Red Team Operations Red Team

    Red teaming is the next step in security; evaluate the overall security of your organisation and how well you are able to defend by sophisticated attacks combining attacks targeting People, Technology and Physical Security.…

  3. CVE-2018-7473 - Open URL Redirection Vulnerability CVE vulnerabilities

    The So Wifi hotspot web interface is vulnerable to an open redirect attack. The web application fails to properly sanitize untrusted input, thus allowing remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a malformed URL.…

  4. CVE-2017-10622 - Authentication Bypass CVE vulnerabilities

    An authentication bypass vulnerability in Juniper Networks Junos Space Network Management Platform may allow a remote unauthenticated network based attacker to login as any privileged user.…