My New Blog at www.ivanobinetti.com

This is my old blog.
You will find the new one at  http://www.ivanobinetti.com
 

IBM X-Force - RazorCMS CSRF

IBM X-Force has published a new Advisory regarding my Razorcms vulnerability:
IBM X-Force RazorCMS Advisory

To read my Original Advisory:
Ivano Binetti's RazorCMS Original Advisory 

FlexCMS Multiple CSRF Vulnerabilities

I've just discovered new multiple CSRF vulnerabilities in FlexCMS 3.2.1 (latest version).
To read more about them you can download my Original Advisory or view other related publications:

Offensive Security Exploit-DB
Inj3ct0r
Packet Storm
Secunia

Secunia SA39961 - Razorcms Multiple Vulnerabilities

Secunia published new Advisory regarding my discovered vulnerability which affects Razor cms 1.2.1 and lower.

To read more about Secunia's Advisory:
Secunia SA39961 Advisory

Sitecom WLM-2501 Change Wireless Passphrase

Yesterday I've discovered new CSRF vulnerabilities in Sitecom WLM-2501 300N wireless modem/router which allow an attacker to change a lot of device parameter and, most of all, to change wireless passphrase.

To know more about these vulnerabilities please read my Original Advisory.

Other sources have published my Advisory:
Packet Storm
Offensive Security Exploit-DB
Inj3ct0r

OSVDB 79635 - Contao cms (fka TYPOlight) CSRF

New my contribution to OSVDB project:
http://osvdb.org/show/osvdb/79635

To read my Original Advisory:
Contao cms Original Advisory

IBM X-Force - Drupal 7.12 CSRF

IBM X-Force has published a security Advisory related to Drupal 7.12 CSRF vulnerability which I've discovered in the past days.
IBM X-Force's Drupal 7.12 Advisory

To read more about my Original Advisory:
My Original Drupal 7.12 Advisory