papers

What this paper is This paper details multiple vulnerabilities found in older versions of Bacula-Web, specifically versions 1.3.x up to 5.0.3. Bacula-Web is a web-based tool designed to provide a summarized view of a Bac

What this paper is This paper details a SQL injection vulnerability in the "EggAvatar" mod for vBulletin version 3.8.x. The exploit, written in Perl, leverages this vulnerability to extract information from the vBulletin

What this paper is This paper details two security vulnerabilities found in version 1.0.1 of a web application called 'Quick Polls'. The vulnerabilities allow an attacker to: Include Local Files (LFI): Read sensitive fil

What this paper is This paper describes a Cross-Site Request Forgery (CSRF) vulnerability found in N-13 News version 4.0. The vulnerability allows an attacker to trick a logged-in administrator into performing actions on

What this paper is This paper details an exploit module for the Metasploit Framework that targets a vulnerability in Apple's Mail.app application on Mac OS X 10.5.0. The vulnerability allows for command execution when a

What this paper is This paper details a vulnerability in the Citrix Access Gateway that allows for remote command execution. Specifically, it targets the legacy NTLM authentication module. When this module is used, the A