Marc Montpas

@marcS0H

Software Entomologist focusing on dangerous species. Security Research Engineer .

République de la Poutine
montpas.me
Bergabung April 2014
12 Foto dan video Foto dan video

Tweet

Anda memblokir @marcS0H

Yakin ingin melihat Tweet ini? Melihat Tweet tidak akan membuka blokir @marcS0H

  1. me-Retweet
    26 Des 2021

    The end of PHP LFI challenges (?) -

    1 balasan 50 retweet 175 suka
    Batalkan
  2. me-Retweet
    15 Des 2021

    Today we're publishing a detailed technical writeup of FORCEDENTRY, the zero-click iMessage exploit linked by Citizen Lab to the exploitation of journalists, activists and dissidents around the world.

    73 balasan 1.830 retweet 4.928 suka
    Tampilkan utas ini
    Tampilkan utas ini
    Batalkan
  3. 14 Des 2021

    Update ASAP.

    During an internal audit of the All In One SEO plugin, we uncovered an SQL Injection vulnerability and a Privilege Escalation bug. If you're using this plugin, we recommend you update it as soon as possible.
    5 suka
    Batalkan
  4. me-Retweet
    4 Nov 2021

    2 balasan 6 retweet 14 suka
    Batalkan
  5. me-Retweet
    4 Nov 2021

    I'm excited to be able to let you all know that WPScan has been acquired by . I want to thank everybody that has ever supported me and believed in me.

    35 balasan 38 retweet 221 suka
    Batalkan
  6. me-Retweet
    4 Nov 2021

    Jetpack is acquiring WPScan, a WordPress vulnerability database used across the WordPress ecosystem to learn about new vulnerabilities. Read more about how we're planning to make malware data and APIs more open source for all.

    4 balasan 16 retweet 31 suka
    Batalkan
  7. me-Retweet
    29 Okt 2021

    We uncovered security issues in Smash Balloon Social Post Feed Plugin (also known as Custom Facebook Feed) that could grant attackers access to your privileged information. Click below to find out more on how you can protect your site.

    6 retweet 8 suka
    Batalkan
  8. me-Retweet
    27 Okt 2021

    This might be the vuln with the highest impact I found so far.. and it is very simple to exploit. Please patch your instances

    Warning: We discovered a critical vulnerability in GoCD that can be exploited by unauthenticated attackers to takeover CI/CD pipelines. We recommend patching your GoCD immediately. Find out more:
    1 balasan 3 retweet 20 suka
    Batalkan
  9. 25 Okt 2021

    If you love technical write-ups as I do, this should be the one thing you read this morning. Awesome find!

    Read the details about -2021-21703 on our Ambionics' blog, a 10 year-old Local Root vulnerability affecting PHP-FPM, FastCGI's server. PHP-FPM is often used with major HTTPd servers such as and .
    1 retweet 4 suka
    Batalkan
  10. me-Retweet
    19 Okt 2021

    GoSecure ethical hackers found a bug in MySQL that left AWS WAF users vulnerable to SQL injection. Our team further confirmed modsecurity to be affected, but protection is within reach as described in the blog.

    30 retweet 42 suka
    Batalkan
  11. me-Retweet
    14 Okt 2021

    WP Fastest Cache Patches Authenticated SQL Injection and Stored XSS Via CSRF Vulnerabilities

    2 balasan 9 retweet 12 suka
    Batalkan
  12. 14 Okt 2021

    I found something...

    We uncovered multiple vulnerabilities in WP Fastest Cache plugin that could grant attackers access to your privileged information. Click below to find out more on how you can protect your site.
    4 suka
    Batalkan
  13. 11 Okt 2021

    Of Crickets And Blockchain

    1 balasan
    Batalkan
  14. 4 Okt 2021

    Facebook, Instagram and WhatsApp are down. Appears to be DNS related.
    Tampilkan utas ini
    Batalkan
  15. 23 Jul 2021

    ♫♫♫ Don’t just be stabbing in the darkness Using grep, and using less You should probably check them
 DNS ♫♫♫

    Today DNS was down.. it had global impact impacting some of the biggest brands on the web... So important, here is a song about it... "DNS.. DNS... DNS... DNS... there is not way it could be.... DNS.. DNS DNS.. DNS.. DNS... "
    Tampilkan utas ini
    Batalkan
  16. me-Retweet
    22 Jul 2021

    We just patched a severe vulnerability in the WooCommerce Currency Switcher plugin. If you are using an older version of this plugin, we encourage you to update immediately.

    4 retweet 3 suka
    Batalkan
  17. me-Retweet
    16 Jul 2021

    Great technical write up on the latest Woocomerce vulnerability by

    4 retweet 8 suka
    Batalkan
  18. me-Retweet
    22 Jun 2021

    CTF write up of a cool problem I solved with using prototype pollution and a graphql injection in a PDF renderer --

    37 retweet 93 suka
    Batalkan
  19. me-Retweet
    16 Jun 2021

    Happy Birthday !

    5 balasan 13 retweet 97 suka
    Batalkan
  20. me-Retweet
    20 Mei 2021

    Here is the link for the conference! Starting with an amazing talk by and moderated by yours truly.

    5 retweet 6 suka
    Batalkan

@marcS0H masih belum menge-Tweet.

Pemuatan tampaknya berlangsung agak lama.

Twitter sedang kelebihan beban atau mengalami sedikit masalah. Coba lagi atau kunjungi Status Twitter untuk informasi lebih lanjut.

    Mungkin Anda juga suka

    ·