OWASP OWTF 1.0.1 - Offensive Web Testing Framework

OWASP OWTF, the Offensive Web Testing Framework, is an OWASP+PTES-focused try to unite great tools and make pen testing more efficient.OWASP OWTF, the Offensive Web Testing Framework, is an OWASP+PTES-focused try to unite great tools and make pen testing more efficient. OWTF aims to make pen...

Information disclosure

The Fun Preschool Creativity Game aka air.com.tribalnova.ilearnwith.ipad.MotherAppEn application 1.6.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2014-5554

CVE-2014-5554 : The Android app “Fun Preschool Creativity Game” (package air.com.tribalnova.ilearnwith.ipad.MotherAppEn), version 1.6.2, does not verify SSL/TLS X.509 certificates. This allows a man-in-the-middle attacker to spoof servers and obtain sensitive information via a crafted certificate...

Kinect hackers take control of the action !

Christopher Baker spent Boxing Day as a VJ – video jockey – for a warehouse party in Liverpool. Among the items being used was a Microsoft Kinect controller, normally used to play Xbox 360 games such as Kinectimals or Kinect Sports. But Baker wasn't playing games: the system was rigged up to a...

Unfixed XSS vulnerability at www.tunisiancreativity.com

Security researcher TheMessy, has submitted on 01/11/2009 a cross-site-scripting XSS vulnerability affecting www.tunisiancreativity.com, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 05/07/2010. It is...