Tag Archives: Critical Flaw

Critical Flaw Reported on PHPMailer – Remote Code Execution

An independent research uncovered a critical vulnerability in PHPMailer that could potentially be used by (unauthenticated) remote attackers to achieve remote arbitrary code execution in the context of the web server user and remotely compromise the target web application. Millions of PHP websites and popular open source web applications, including WordPress, Drupal, 1CRM, SugarCRM, Yii,… Read More »

Facebook’s Bug – Hackers Can Delete Any Video From Facebook Comments

Indian security researcher, Pranav Hivarekar reported critical security flaw on Facebook’s new video comment feature. Using this flaw Hivarekar  was able to delete any video of his choice by abusing this logic flaw. He reported the flaw to Facebook and they immediately fixed the flaw. Facebook recently launched it’s new feature, now users can post a video… Read More »

Critical Flaw in All Java App Servers

One of researcher team disclosed critical flaw, Remote Code Execution in Java based app servers. They also demonstrated how easy it would be for an attacker to exploit Java-based application servers and products which are using same library. Many software foundations (WebLogic, WebSphere, JBoss, Jenkins, OpenNMS) are using the Apache Commons Collections, They started providing patches… Read More »