Collaborate Disseminate
‘GDPR-Lite’, Testing Firefox, refactoring in VS Code, sniff network traffic from our iOS device, Gentoo GitHub organization is hacked, and what does it mean to experience fulfillment? All that and more, here on Application Security Weekly! … Continue reading PHPMyAdmin, GitHub, and VS Code – Application Security Weekly #22
I created a ecommerce site with a developer. He completed almost all his work but in the end we had some financial disagreements so our partnership ended in a bitter dispute. That developer threatened to hack my site using a … Continue reading protection from Backdoor hacks from disgruntled developer/ employee
Can the software ModSecurity defend from Brute Force Attacks on PHPmyadmin and WordPress as well?
A particular hosting company providing shared hosting told me that ModSecurity should cover PHPmyadmin and WordPress as well a… Continue reading Can ModSecurity defend from Brute Force Attacks on PHPmyadmin and WordPress as well?
A critical security vulnerability has been reported in phpMyAdmin—one of the most popular applications for managing the MySQL database—which could allow remote attackers to perform dangerous database operations just by tricking administrators into clic… Continue reading Critical Flaw Reported In phpMyAdmin Lets Attackers Damage Databases
I found that in several websites, [HOSTNAME]/phpmyadmin/setup/index.php is accessible by default without authentication. However, it seems impossible to modify anything or to do security damage. Also, the website database is not accessible… Continue reading Does "/phpmyadmin/setup/index.php" present a security risk?