-
Unrestricted Upload/RCE in Neosense theme 1.7
19 Sep 2016
Neosense theme version 1.7 contains an unrestricted file upload vulnerability. An attacker can upload any file to the site without logging in, and achieve remote code execution by uploading a file with extension .php or .phtml. » more
-
Downgrading FreeBSD 10 to 9 with freebsd-update
24 Dec 2014
There's a moment in every nerd's life when you wished you hadn't updated to that shiny latest software version. For us, such a moment happened with FreeBSD 10.1, with freezes and panics all over the place. So what do you do? Well, you can do a tedious clean install... Or just downgrade your running system to FreeBSD 9.3! It turns out that
freebsd-update
makes this hilariously easy. When life gives you eggs, make eggstasy! » more -
Multiple vulnerabilities in InfiniteWP Admin Panel
10 Dec 2014
InfiniteWP allows an administrator to manage multiple Wordpress sites from one control panel. According to the InfiniteWP homepage, it is used on over 317,000 Wordpress sites.
The InfiniteWP Admin Panel contains a number of vulnerabilities that can be exploited by an unauthenticated remote attacker. These vulnerabilities allow taking over managed Wordpress sites by leaking secret InfiniteWP client keys, allow SQL injection, allow cracking of InfiniteWP admin passwords, and in some cases allow PHP code injection. » more - Flow Control - 2014 mix 18 Sep 2014
- Improving the FreeBSD ModSecurity port 04 Mar 2014
- Installing Audacious on OS X 03 Mar 2014
- Installing ModSecurity on FreeBSD 21 Feb 2014
- Routing Ableton audio to Skype 13 Nov 2012
- nu.nl clean and uncluttered 13 Nov 2012