Monthly Archives: July 2015

Full disclosure: multiple critical security vulnerabilities (including a backdoor!) in PHP File Manager

In July 2010 I was looking for a web based file manager that I could use on my own web server. After some research I found the PHP File Manager from Revived Wire Media. A basic, but good looking web … Continue reading

Posted in PHP security, responsible disclosure, security assessment | 36 Comments

M-FILES radioshow: ‘Rest In Privacy’

Deze week was ik te gast in de radioshow van M-FILES wat ging over online privacy. Vanaf 22:12 minuten is mijn bijdrage te horen:

Posted in hacking, podcast, privacy, security awareness | Leave a comment

Lukt het om in te breken in de website van Massa Media?

Die vraag stelde een TV-ploeg van RTV Utrecht mij:

Posted in hacking, website, website security | Leave a comment

Security risk analysis of address bar spoofing bug in Chrome and Opera

On June 30, 2015 security researcher David Leo publicly disclosed a vulnerability in Google Chrome on the full disclosure mailing list. Via this vulnerability it is possible to spoof the location of the address bar in the latest version of … Continue reading

Posted in browser security, bug, phishing | Leave a comment