- RCE in Concrete CMS by exploiting a double race condition (and some php tricks) https://www.fortbridge.co.uk/research/multiple-vulnerabilities-in-concrete-cms-part1-rce/ 2 comments netsec
- Multiple vulnerabilities found in Cpanel/WHM https://www.fortbridge.co.uk/uncategorised/multiple-vulnerabilities-in-cpanel-whm/ 13 comments netsec
- Compromising Joomla by chaining a pass reset vulnerability & stored xss for Privesc https://www.fortbridge.co.uk/advisories/joomla-password-reset-vulnerability-and-stored-xss-for-full-compromise/ 11 comments netsec
- Password reset poisoning in Drupal https://www.fortbridge.co.uk/research/drupal-insecure-default-leads-to-password-reset-poisoning/ 5 comments netsec