THP Wisec USH DigitalBullets TheHackersPlace network
The WIse SECurity
.italian
.english
Wisec Home SecSearch Projects Papers Security Thoughts
 
News
Flash Application Testing: A New Vector for XSS and Cross Site Flashing.
IE and Firefox Digest Authentication Request Splitting.
Php import_req_var globals overwrite Advisory.
Subverting Ajax - The Paper.
Adobe Plugin Multiple Vulnerabilities.
Wisec@23rd.CCC Congress in Berlin - 29th Dec. 2006 - Subverting Ajax.
SecSearch. Search Engine for Security Community.
Mysql COM_TABLE_DUMP Flaws.
Mysql Anonymous login Flaw.
A new project to stop embed passwords in Php scripts: PassBroker.
MySQL new three vulnerabilities unleashed
PHP shmop safemode bypass
PHP RFC1867 Vuln - POC Released!
Search on Wisec
Google

News

It seems a lot of people is looking for the paper and CCC website is slow and discontinuous,
so anyone can download Subverting Ajax in the Papers Section.

Wisec@23rd. CCC Congress
Me (Stefano Di Paola) and Giorgio Fedon will have a lecture @ 23rd CCC Congress in Berlin on 29th December 2006 h. 17.15

Subverting Ajax - Next generation vulnerabilities in 2.0 Web Applications.


Topics will be:
  • Prototype Hijacking
  • Cross Domain Auto Injection
  • Browser's Plugin Vulnerabilities

Mysql COM_TABLE_DUMP Flaws.

Mysql Anonymous login Flaw.

MySQL insecure temporary File Creation

PHP shmop safemode bypass

Php Vulnerability RFC1867 - POC

Wisec is brought to you by...

Wisec is written and mantained by Stefano Di Paola.

Wisec uses open standards, including XHTML, CSS2, and XML-RPC.

All Rights Reserved 2004
All hosted messages and metadata are owned by their respective authors.