Videos

Wed
15
Oct
Editorial_Staff_Team's picture

Parallels Plesk v11.5.x - URL Protection Filter Bypass (Video Demonstration)

Parallels Plesk v11.5.x - URL Protection Filter Bypass Vulnerability

The video has been recorded during the pentest session of ismail kaleem in the official parallels plesk hosting panel application. The video demonstrates how to bypass the url filter protection for malicious requests to execute malicious urls. The vulnerability is already patched by the parallels dev team.

The advisory of the vulnerability is not publicly available because the team participated in a silent security program of the laboratory.

Wed
08
Oct
Editorial_Staff_Team's picture

Microsoft Yammer API - Filter Bypass & Persistent Vulnerabilities (PoC Video Demonstration)

MS Yammer API - Bypass & Persistent Vulnerabilities (PoC Video Demonstration)

After our pentests against the yammer social network we are able to provide a video after a patch has been successful implemented by the msrc team. The video is a live pentest session of the core team researcher ateeq ur rehman kahn in the microsoft yammer service. The demonstration video shows how to bypass the yammer api filter to execute own script codes on the application-side of the vulnerable yammer online-service. The issues has already been patched by the msrc team after a large documentation phase.

Pages

Subscribe to RSS - Videos