During a intrusion test conducted recently, I found a daemon called perfd which is listening on port 5227. According to IANA[1], the…
Hi there, For those using the RIPS scanner [1] to help the analysis of vulnerabilities on PHP code, pay attention not to leave it running…
A password is meant to secure an asset against unauthorized access from an attacker.
In order to prevent someone from gaining access, the…
O objetivo deste post é demonstrar como a implementação insegura de serviços na rede pode facilitar o comprometimento de toda a…
Conviso Research and Development Team is usually reading thousands and thousands of information daily and we make some filters and pay…
There is a class of vulnerabilities known as Unsafe Reflection [1] that has not been much discussed in the Ruby/Rails circle, despite being…
We found a SQL Injection vulnerability in Ruby on Rails that affected all versions and reported it to the Rails security team. On the 12th…