Practical advice for earning higher Microsoft bounty awards

This year at the Nullcon International Security Conference I shared practical advice for how security researchers can maximize the impact of their security vulnerability submissions and earn higher bounty awards under the Microsoft Bounty Program. For those who couldn’t be there, I had two core...

Socialware 2.2 - Upload / Cross-Site Scripting

Exploit Title:Upload Vulnerability and XSS in socialware V2.2 www.iscripts.com Version: Web Application vendor :www.iscripts.com Date: 29 apr,2010 Dork:Powered by iScripts SocialWare Author:Sid3^effects Code : --------------------------------------------------------------------------------------...