Web Pentesting

CVE-2019-10715: Stored XSS in Verodin Director version 3.5.3.0 and earlier

Overview This advisory addresses a Stored XSS vulnerability in Verodin Director affecting version 3.5.3.0 and earlier via input fields of...

CVE-2019-10716: Information Disclosure Issue in Verodin Director version 3.5.3.1 and earlier

Overview This advisory addresses a Information Disclosure vulnerability in Verodin Director affecting version 3.5.3.1 and earlier where...

My first CVE! Exploiting the XXE Vulnerability in BlackBerry AtHoc 7.6 Management System

Mirror Blog Post: XXE Vulnerability in BlackBerry AtHoc (Networked Crisis Communication) Platform Recently I had the opportunity to test...