Anatomy of a real life XSS vulnerability…

Recently I got an email from Ivan Buetler of GESEC Team, reporting a security vulnerability in the latest stable version (1.4.25) of Coppermine Photo Gallery. The exploit was reported in the URI upload mechanism of Coppermine which allows the users to provide the URI of an image anywhere on the web to make it a [...]

Posted on 2/8/10 by Aditya Mooley | no comments; | Filed Under: Coppermine, Open Source, PHP, Security | read on

Bardcodes using PHP Pear Image_Barcode

Management of delegate registration at open source conferences has been an issue for quite some time - the main problem is that usually there are no online payment options and the queue gets very long specially on the first day. Late last year I had an opportunity to deploy something which made me feel "we [...]

Posted on 2/1/10 by Tarique Sani | no comments; | Filed Under: HowTo, PHP | read on

About this blog

This blog is an extension of our commitment to Open Source community. Through this blog we intend to share our ideas and experiences both in the field of technology as well as business management.

The authors of this blog are all members of the Team SANIsoft

Recently

Categories

Bake Business CakePHP Case Study Cheesecake Conference Console Coppermine Email Injection Extjs HowTo Javascript jQuery L10n Mediawiki MySQL Open Source PHP PHPCamp Security Wordpress XAMPP xdebug

Argue for your limitations, and sure enough they're yours - Richard Bach