[FD] CVE-2015-2652 – Unauthenticated File Upload in Oracle E-business Suite.

*Introduction* *Oracle E*–*Business Suite* is a fully integrated, comprehensive suite of business applications for the enterprise. Following purposes most of organization uses Oracle E-business. 1. Customer Relationship Management 2. Financial Management 3. Human Capital Management 4.

[FD] Drupal 8.0.0-beta14 Vendor Script Vulnerable to XSS

*Overview* Recently, I was playing around with the Drupal CMS application code. Drupal is an open source CMS application widely used for blog posting purpose, Further details, to know more about Drupal here . Open source application advantage being, the source

[FD] Umbraco - The open source ASP.NET CMS Multiple Vulnerabilities

[image: Vulnerable Umbraco] Recently I got an assignment where I had to work on the Umbraco application - a free Open Source Content Management System built on the ASP.NET platform and is used by more than 2,25,000 websites. Wh

[FD] Garage4hackers Ranchoddas Webcast Series CTF Challenge

Hello all, I hope you prepared with Sunday weapons The CTF winning the Hard level will be awarded $150, Medium Level with $125 and Low Level 65$. Ranchoddas CTF Challenge. The bounty will be donated towards the Garage4hackers Maharastra Drought Relief Fund. CTF link: http://92.222.71.224/ Subm

[FD] UI redress attack on live.com (affected all pages)

On 7/29/13 I've reported Live.com XFO vulnerability to the *Microsoft Security team* and finally their investigation came to conclusion and fixed the bug. So, Here is details of bug and timeline of fixing bug. A year ago on the weekend, I started digging into MS services for bugs. The timeline of