Some time ago I was in the need for a way in javascript to send a POST data to a file and load it’s contents in iframe format, the contents were in the form of application/PDF and the PDF would vary from what I would send in my POST values. Non-challenging as it sounds it still took me some time to figure out – not a problem should be solved…
More+I found a self-XSS in the wordpress core the other day, when you manage to succesfully exploit this vulnerability only imagination can stop you from owning the wordpress installation.
More+LulzSec will get a hard blow soon I think. update: this was not th3j35st3r’s work but KILLERCUBE’s th3j35st3r KILLERCUBE has been Googling his ass off to expose the leaders of lulzSec, here are results, I wonder how long it will take until the arrest will be made. There go our lulz just when the show was getting cool with hack core and things like that :’(. Some Hackcore can be…
More+Hi there folks, we are happy to tell you that Fredrik, Mathias and me; Jelmer are all in the Google security Hall of Fame for our findings.
The latest unpublished XSS for which I got in the Hall of Fame is still unpatched.
More+Yesterday the Facebook chief security officer Joe Sullivan announced at Hack in the Box (Amsterdam) that Facebook will reward hackers for reporting security vulnerabilities.
More+