Our public security advisories

Croogo CMS 1.3 'Contact' and 'User' Module HTML Injection

Croogo CMS is prone to an HTML-injection vulnerability because it fails to properly sanitize user-supplied input.

Posted on May 10, 2010 

Read full advisory»

Croogo CMS 1.2 Cross Site Scripting Vulnerabilities

Croogo CMS 1.2 Cross Site Scripting Vulnerabilities

Posted on Feb 27, 2010 

Read full advisory»

ZenCart 1.3.8a Multiple XSS in Admin Interface

ZenCart 1.3.8a has a persistent XSS in 'Admin Home' in 'Last Name' parameter. Another Cross Site Scripting vulnerability exists in 'nogrants' parameter in sqlpatch.php.

Posted on Nov 16, 2009 

Read full advisory»

D-Link WBR-1310 Cross-Site Scripting

D-Link WBR-1310 Router is susceptible to XSS, allowing an attacker to change the Admins password...

Posted on Nov 15, 2009 

Read full advisory»

2Wire Remote Denial of Service

The remote management interface on tcp/50001 of various 2Wire devices suffer from a remote denial of service vulnerability.

Posted on Nov 01, 2009 

Read full advisory»

Archives

RSS Feed

Stay up to date on the latest security advisories released by Websec

Latest Blog Entries

Panoptic
An overview of Panoptic, an open source penetration testing tool that automates the process of search and retrieval of common log and config files through LFI vulnerabilities.
Posted in panoptic python tool lfi

Special discount code for "Nmap 6: Network Exploration and Security Auditing Cookbook"
PacktPub created a special discount code for our friends from HackerHalted
Posted in Nmap Hacker Halted nmap cookbook

Mac2WepKey HHG5xx for iPhone
The famous app to obtain the default WiFi passwords for Huawei routers is now available for the iPhone iOS 5.
Posted in HHG5xx iPhone huawei mac2wepkey passwords generator

Latest News

Oct 12, 2012
Websec at Hacker Halted USA 2012
Hacker Halted USA 2012 will reunite information security specialists from around the world to show the latest and most innovating research in the field of information security.

Sep 27, 2012
Nmap 6: Network Exploration and Security Auditing Cookbook is now on pre-sale!
The book "Nmap 6: Network Exploration and Security Auditing Cookbook" by Paulino Calderón is now on pre-sale and will be available soon.

Latest Advisories