Our public security advisories

2Wire Remote Denial of Service

The remote management interface on tcp/50001 of various 2Wire devices suffer from a remote denial of service vulnerability.

Posted on Nov 01, 2009 

Read full advisory»

Commonspot CMS 5.1.0.x Cross Site Scripting vulnerabilities

XSS vulnerabilities in Commonspot CMS

Posted on Oct 13, 2009 

Read full advisory»

2Wire Authentication Bypass and Unauthorized Password Reset

Some 2Wire devices are vulnerable to authentication bypass and remote password reset attacks that allow drive by pharming.

Posted on Oct 12, 2009 

Read full advisory»

Archives

RSS Feed

Stay up to date on the latest security advisories released by Websec

Recent From Blog

Bypassing Web Application Firewalls with SQLMap Tamper Scripts
An introduction to SQLMap's new tamper scripts and how the can be used to bypass Web Application Firewalls and Intrusion Detection Systems.
Posted in SQL Injection WAF SQLMap Tamper Scripts Firewall

Optimized Blind MySQL Injection Data Retrieval
Demonstrates a method to extract data from a MySQL database using blind injection in fewer requests than currently known techniques such as the Bisection and Bit Shift method.
Posted in Blind Injection MySQL SQL Injection Database

mac2wepkey - Huawei default WEP generator
Huawei HG520 and HG530 routers are vulnerable to weak cipher attacks. It is possible to generate the default WEP/WPA key. The purpose of this post is to explain the process of developing a key generator for these devices.
Posted in mac2wepkey home gateway wep generator echolife hg530 huawei hg520

Last News

Apr 30, 2012
GuadalajaraCON 2012 by Websec

Mar 21, 2012
Conference on Cyberbulling at Westhill Institute
Websec had the opportunity to speak with students at the Westhill Institute about Cyberbulling and the threat it brings to young adults.

Last advisories