logo
  • About
  • Contact
  • Instant Response
  • Hall of fame
  • COVID-19

Categories

  • Alerts and warnings
  • BU Safe
  • Hit by ransomware?
  • Incident handling
  • News

Noticed a problem?

Report an Incident
–or–

Recent Posts

  • GitHub Breach – Hackers Stole Code Signing Certificates From Repositories
  • Misconfiguration and vulnerabilities biggest risks in cloud security: Report
  • Microsoft’s Verified Publisher Status Abused in Email Theft Campaign
  • Coalition Forecasts CVE Disclosure Spike in 2023
  • CVE-2023-23924: Critical-Severity RCE Flaw Found in Popular Dompdf Library

Video

https://www.youtube.com/watch?v=wMsHDH67eb4

RSS NVD Data Feed

  • CVE-2020-22452 (phpmyadmin) 26 January 2023
  • CVE-2020-22327 (hfish) 26 January 2023
  • CVE-2020-36655 (gii) 21 January 2023
  • CVE-2020-25502 (endpoint_detection_and_response) 20 January 2023
  • CVE-2020-23256 (electerm) 20 January 2023

RSS CERT-EU News Feed

Information

  • Privacy & Cookies Policy

Extended XSS Search : A Better Version Of My XSSFinder Tool

Posted on 10 March 2020

From kalilinuxtutorials.com

Extended XSS Search : A Better Version Of My XSSFinder Tool

Extended XSS Searcher is the is the extended version based on the initial idea already published as “xssfinder”. This private version allows an attacker to perform not only GET but also POST requests. Additionally its possible to proxy every request through Burp or another tunnel.

Read more…

Posted in News

Post navigation

Previous post: Exfiltration and Uploading DATA by DNS Traffic (AAAA Records) | By Damon Mohammadbagher
Next post: Multiple APT Actors Exploiting Microsoft Exchange Email Servers Vulnerability to Take Over the Server
BU CERT
Authorized to use CERT(TM) - CERT is a mark owned by Carnegie
Mellon University

Other CERTs

  • National Cyber Security Centre
  • US-CERT
  • FORTHcert
Proudly powered by WordPress | Theme: bu-cert by Nan Jiang.