Tod Beardsley's picture

Posts by Tod Beardsley

CVE-2023-0391: MGT-COMMERCE CloudPanel Shared Certificate Vulnerability and Weak Installation Procedures

Vulnerabilities and Exploits

CVE-2023-0391: MGT-COMMERCE CloudPanel Shared Certificate Vulnerability and Weak Installation Procedures

Tod Beardsley

Microsoft Defender for Cloud Management Port Exposure Confusion

Vulnerabilities and Exploits

Microsoft Defender for Cloud Management Port Exposure Confusion

Tod Beardsley

A Deep Dive into Reversing CODESYS

Threat Research

A Deep Dive into Reversing CODESYS

Tod Beardsley

Multiple DMS XSS (CVE-2022-47412 through CVE-20222-47419)

Vulnerabilities and Exploits

Multiple DMS XSS (CVE-2022-47412 through CVE-20222-47419)

Tod Beardsley

Refreshing Rapid7's Coordinated Vulnerability Disclosure Policy

Vulnerabilities and Exploits

Refreshing Rapid7's Coordinated Vulnerability Disclosure Policy

Tod Beardsley

Cengage LTI Session Management Leakage

Vulnerabilities and Exploits

Cengage LTI Session Management Leakage

Tod Beardsley

CVE-2022-4261: Rapid7 Nexpose Update Validation Issue (FIXED)

Vulnerabilities and Exploits

CVE-2022-4261: Rapid7 Nexpose Update Validation Issue (FIXED)

Tod Beardsley

New Research: We’re Still Terrible at Passwords; Making it Easy for Attackers

Threat Research

New Research: We’re Still Terrible at Passwords; Making it Easy for Attackers

Tod Beardsley

25 Years of Nmap: Happy Scan-iversary!

Exposure Management

25 Years of Nmap: Happy Scan-iversary!

Tod Beardsley

Primary Arms PII Disclosure via IDOR (FIXED)

Threat Research

Primary Arms PII Disclosure via IDOR (FIXED)

Tod Beardsley

CVE-2021-3779: Ruby-MySQL Gem Client File Read (FIXED)

Exposure Management

CVE-2021-3779: Ruby-MySQL Gem Client File Read (FIXED)

Tod Beardsley

The Hidden Harm of Silent Patches

Industry Trends

The Hidden Harm of Silent Patches

Tod Beardsley

CVE-2022-1026: Kyocera Net View Address Book Exposure

Threat Research

CVE-2022-1026: Kyocera Net View Address Book Exposure

Tod Beardsley

CVE-2021-3546[78]: Akkadian Console Server Vulnerabilities (FIXED)

Vulnerabilities and Exploits

CVE-2021-3546[78]: Akkadian Console Server Vulnerabilities (FIXED)

Tod Beardsley

CVE-2021-3927[67]: Fortress S03 WiFi Home Security System Vulnerabilities

Exposure Management

CVE-2021-3927[67]: Fortress S03 WiFi Home Security System Vulnerabilities

Tod Beardsley

Fortinet FortiWeb OS Command Injection

Vulnerabilities and Exploits

Fortinet FortiWeb OS Command Injection

Tod Beardsley

Multiple Open Source Web App Vulnerabilities Fixed

Products and Tools

Multiple Open Source Web App Vulnerabilities Fixed

Tod Beardsley

CVE-2020-7387..7390: Multiple Sage X3 Vulnerabilities

Vulnerabilities and Exploits

CVE-2020-7387..7390: Multiple Sage X3 Vulnerabilities

Tod Beardsley

CVE-2021-20025: SonicWall Email Security Appliance Backdoor Credential

Vulnerabilities and Exploits

CVE-2021-20025: SonicWall Email Security Appliance Backdoor Credential

Tod Beardsley

Rapid7 Releases New Industry Cyber-Exposure Report (ICER): Deutsche Börse Prime Standard

Threat Research

Rapid7 Releases New Industry Cyber-Exposure Report (ICER): Deutsche Börse Prime Standard

Tod Beardsley

Akkadian Provisioning Manager Multiple Vulnerabilities Disclosure (Fixed)

Threat Research

Akkadian Provisioning Manager Multiple Vulnerabilities Disclosure (Fixed)

Tod Beardsley