Grab: Leaking sensitive information on Github lead full access to all Grab Slack channels

Summary: Accidental leakage of secret keys in such code repositories is a real problem, after my report 387117, I decided to dig deeper than the previous report and looking to some random profiles in Github, and doing some dirty work I was able to access to the developer’s company’s internal chat...

IceWarp 3.4.5 XSS *AGAIN*

DarC KonQuesT IceWarp 3.4.5 XSS Release Product: IceWarp Webmail 3.4.5 Vendor: IceWarp Software - E-mail: [email protected] Web: www.icewarp.com Problem: Cross Site Scripting Severity: Mild Operating Systems: Tested against Win2k Discovered: October 29, 2002 Vendor Notified: October 29, 2002 Publi...