CVE-2018-18809 - Tibco JasperSoft is vulnerable to path traversal for remote non-authenticated user.

Non-security post. Instructions how to watch WRC+ AllLive video streams directly if you are tired of WRC+ AllLive heartbeat crashes.

CVE-2017-15715 - Apache HTTP Server - <FilesMatch> bypass with a trailing newline at the end of the file name.

2 SQL injection vulnerabilities in dotCMS. Related CVE list: CVE-2016-10007, CVE-2016-10008. Blacklist defence bypass.

SQL injection in Joomla extension DT Register allows remote unauthenticated attacker to execute malicous SQL commands. Step-by-Step Proof-of-Concept and interesting communication with vendor.

One of those sites which should be secure, is cert.org. There was Reflected HTML injection vulnerability from presenting Request URI back to HTML (works only with IE).

Multiple SQL injection vulnerabilities in dotCMS. Related CVE list: CVE-2016-8902, CVE-2016-8903, CVE-2016-8904, CVE-2016-8905, CVE-2016-8906, CVE-2016-8907, CVE-2016-8908, CVE-2016-4040.

CVE-2016-8600 dotCMS before version 3.6.0 allows attacker to programmatically reuse valid captcha code.

At the end of 2013 I found one interesting XSS vulnerability in LinkedIn. Problem was easy to find, but hard to use for attacker.

In a web application program code often are used parameters REQUEST_URI to present current URL or QUERY_STRING to present current query GET parameters. Usually those parameters are nicely converted to URL encoding and it may seem safe to use them directly in HTML document or SQL query. But "usually" does not mean "always".

CVE-2016-4803 Email Header Injection vulnerability in dotCMS framework allows attacker to send malicious emails using "valid" and "trusted" email server.

Finally, today is "The Other Tomorrow". The magical day which is referred for postponing tasks "it would be nice to be done one day". To be honest, I have postponed it for years. And now, huh, here it is.