Home Blog Page 7

CSRF with MS Word

Update 28/11: It is interesting to note that MS Word 2003 will actually warn the user. Obviously, someone at Microsoft saw the potential for badness...

WordPress 2.1.3 Akismet Vulnerability

Updates: 14/05/07 Added link to new version David Kierznowski of Operation n has discovered a serious flaw in the Akismet anti-spam plugin that comes by default...

Input Validation Cheat Sheet

Related articles: SQL Injection Cheat Sheet We sometimes carelessly throw characters up and about in an attempt to find a gem. This paper covers miscellaneous...

SQL Injection Cheat Sheet

Related articles: Input Validation Cheat Sheet (Want to find other input validation problems?) Table of Contents Generic - Bypass Authentication Microsoft SQL Sybase MySQL Oracle PostgreSQL DB2 Ingres Bypass SQL Injection Filters References and Credits ChangeLog Date Change 09/07/07 DB2...

Projects

WordPress Securify Plugin WordPress Securify (WPSec) is a security plugin for WordPress. Every hour the tests specified within WPSec will be executed. A count of...