Profile

Cover photo
Verified local business
16 followers
AboutPosts

Stream

Klikki Oy

Shared publicly  - 
 
In a demo posted on YouTube, the researcher shows how a flaw in the Unity Web Player could let an attacker access a Gmail account
1
Add a comment...

Klikki Oy

Shared publicly  - 
 
Google Analytics by Yoast stored XSS #2. April 20, 2015. Overview. Google Analytics by Yoast is a WordPress plug-in for monitoring website traffic. With approximately seven million downloads it's one of the most popular WordPress plug-ins. Klikki has identified a second critical security ...
1
Add a comment...

Klikki Oy

Shared publicly  - 
 
Yoast Analytics stored XSS #2 demo https://youtu.be/9CF3b9PBCfI #wordpress #exploit

Klikki Oy

Shared publicly  - 
 
Three vulnerabilities, including a critical SQL injection, found in the WPML multilingual WordPress plug-in - http://klikki.fi/adv/wpml.html #wordpress     #wpml      #0day   #infosec  
1
Add a comment...

Klikki Oy

Shared publicly  - 
Facebook refuses to reward a researcher for a vulnerability in third-party software. The expert expected a considerable bounty for his findings.
1
Add a comment...

Klikki Oy

Shared publicly  - 
 
This video demonstrates the stored XSS vulnerability in Google Analytics by Yoast. The vendor assigned it DREAD score 5 (low). Apparently based on the number, some commentators have characterised the security issue as "minor" and the upgrade as "low priority".

We still think this is a critical vulnerability. Rather than using a number, it's probably more insightful to see what the vulnerability means in the real world.

It's important to patch your system even though the vendor assigned a low number. This isn't one of those "potential scenarios", it's an easy server-side code execution.

More information: http://klikki.fi/adv/yoast_analytics.html

Klikki Oy

Shared publicly  - 
 
Kaikki yleisesti käytössä olevat WordPress-versiot haavoittuvia:
http://klikki.fi/adv/wordpress_ennakko-fi.html
 ·  Translate
1
1
Add a comment...
Contact Information
Map of the business location
Asemakatu 12 40100 Jyväskylä Finland
Asemakatu 12FI
Software Company, Advertising
Software Company
Advertising
Business Related
Business Service
Computer Security Service
Design Services
Digital Media
Information and Technology Services
Services Companies
Web Services
Website Designer
Google+ URL

Street View

Panorama
Write a review
Review Summary
Be the first to review
Photos
Upload public photo
Your Activity