Handler on Duty: Didier Stevens
Threat Level: green
Date | Author | Title |
---|---|---|
2024-10-15 | Johannes Ullrich | Angular-base64-update Demo Script Exploited (CVE-2024-42640) |
2022-05-23 | Johannes Ullrich | Attacker Scanning for jQuery-File-Upload |
2021-07-29 | Xavier Mertens | Malicious Content Delivered Through archive.org |
2018-11-05 | Johannes Ullrich | Struts 2.3 Vulnerable to Two Year old File Upload Flaw |
2009-12-28 | Johannes Ullrich | 8 Basic Rules to Implement Secure File Uploads http://jbu.me/48 (inspired by IIS ; bug) |