SecPod Labs
Security Research
In-depth CVE write-ups, vulnerability analysis, and security intelligence from the SecPod Research team.
Multiple XSS Vulnerabilities in Wiccle Web Builder CMS and iWiccle CMS Community Builder
CVE Research
Multiple XSS Vulnerabilities in Wiccle Web Builder CMS and iWiccle CMS Community Builder
Folks, SecPod Research Team member (Veerendra G.G) found multiple XSS flaws in Wiccle Web Builder CMS and iWiccle CMS Community Builder M, which can be used to gain sensitive information and launch further attacks. Multiple flaws lies in multiple parameters while the web Application processes the us...
XSS Vulnerability in ZeusCart Shopping Cart [0day]
CVE Research
XSS Vulnerability in ZeusCart Shopping Cart [0day]
Folks, SecPod Research Team member (Sooraj K.S) found an XSS flaw in ZeusCart Ecommerce Shopping Cart, which can be used to gain sensitive information and launch further attacks. The flaw lies in the search parameter while ZeusCart web app processes the user-supplied input and renders the content ba...
MS08-067 (Conficker worm) detection – OpenVAS plugin
CVE Research
MS08-067 (Conficker worm) detection – OpenVAS plugin
Conficker worm variants A, B and C are dependent on vulnerability in Microsoft server service. Microsoft had released an advisory MS08-067 back in October 2008 to address the above vulnerability. As was expected at that time, number of attacks are spreading, major one being Conficker worm via the co...
Exploit Shield
CVE Research
Exploit Shield
In the arena of computer security and exploitation world, we come across many security tools. Some of them are quite useful; for some, you have to plug them in and out in a few days. However, the antivirus company F-Secure developed an application called Exploit Shield, which is mainly prioritizing ...