papers

What this paper is This paper details a Blind SQL Injection vulnerability found in the Catalog Builder eCommerce Software. The vulnerability exists in the script, specifically when handling the parameter. It allows an at

What this paper is This paper details a Denial of Service (DoS) vulnerability in Adobe Reader and Acrobat version 10.0.1. The vulnerability is triggered by a specially crafted PDF file that exploits how the application h

What this paper is This paper is a security advisory detailing a Cross-Site Request Forgery (CSRF) vulnerability found in IBM WebSphere Application Server versions 7.0.0.11 and 7.0.0.13. The advisory, published by Core S

What this paper is This paper details multiple security vulnerabilities found in Free Simple CMS version 1.0. The vulnerabilities are of two main types: Cross-Site Scripting (XSS) and Local File Inclusion (LFI). These fl

What this paper is This paper details a SQL injection vulnerability found in AMHShop version 3.7.0. AMHShop is described as an Arabic shopping script. The exploit leverages a flaw in how the application handles user inpu

What this paper is This paper, published by Core Security in June 2011, details a vulnerability in Microsoft Hyper-V that allows an authenticated local user within a guest virtual machine to cause a persistent denial of