all InfoSec news
235 - A GitLab Account Takeover and a Coldfusion RCE [Bug Bounty Podcast]
Jan. 16, 2024, 1 p.m. | DAY[0]
DAY[0] www.youtube.com
Links and vulnerability summaries for this episode are available at: https://dayzerosec.com/podcast/235.html
[00:00:00] Introduction
[00:00:20] SonicWall Discovers Critical Apache OFBiz Zero-day
[00:11:40] [GitLab] Account Takeover via password reset without user interactions
[00:24:05] Unauthenticated RCE in Adobe Coldfusion [CVE-2023-26360]
[00:35:08] No new iPhone? No secure iOS: Looking at an unfixed iOS vulnerability
[00:36:45] How we made $120k bug bounty in …
account account takeover adobe adobe coldfusion apache apache ofbiz apache ofbiz zero-day bounty bug bug bounty bugs coldfusion critical gitlab introduction ofbiz password password reset podcast rce reset sonicwall takeover unauthenticated zero-day
More from www.youtube.com / DAY[0]
253 - A Retrospective and Future Look Into DAY[0]
1 month, 1 week ago |
www.youtube.com
Future of Exploit Development Follow-up (Episode 250)
2 months, 2 weeks ago |
www.youtube.com
247 - Hacking Google AI and SAML [Bug Bounty Podcast]
2 months, 3 weeks ago |
www.youtube.com
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Sr. Product Manager
@ MixMode | Remote, US
Corporate Intern - Information Security (Year Round)
@ Associated Bank | US WI Remote
Senior Offensive Security Engineer
@ CoStar Group | US-DC Washington, DC