Telekom Security

Home Imprint Disclaimer Privacy Policy About Telekom Security
  • Trovebox - Authentication Bypass, SQLi, SSRF

    30 Apr 2018

    Trovebox, a photo sharing and management application, is prone to several critical vulnerabilities. Exploiting is trivial and it is recommended to update to the fixed version from Github.

    Continue Reading →

  • Kaltura Video Platform - Pre-Auth Remote Code Execution (and XSS)

    12 Sep 2017

    During an interal pentest several critical vulnerabilities could be identified in the latest version of Kaltura Community and Enterprise. The vulnerabilities were fixed in the latest release 13.2.0.

    Update: A proof of concept exploit can be found here.

    Continue Reading →

« 1 2 »
Based on Monochrome Jekyll theme