Archive for WWW

[hackersmag] bypass user level restrictions, bug-case in ‘’

Posted in AbhishekKr, ABK Labs, security with tags , , , , , , , , , , on December 21, 2010 by abhishekkr

@ [21/Dec/2010]


access-video@Vimeo: [view/download original nice resolution video here]

bypass of user level restrictions, a case of bug in ‘’

So, here is a bug (which  has now been fixed) in… that allowed users to get a local copy of documents which were devoid of download and print options.

It’s how layered limitation can be broken, and why restrictions must be implemented root-level-up and not just as user-level module.

…click here to read full blog-post and view real-case video

[] vulnerability report of, by ABK

Posted in Blogroll, security with tags , , , , , , , , , , , , , on September 2, 2010 by abhishekkr

@ [26/Aug/2010] :: php flaw self-inviting DoS, leaked framework and server info [by, ABK]
[]Patched: Yes
[]Product Name:; a Payroll Helpdesk, serving…
[]Vuln Summary:
There were validation flaws for GET Request ……. any number of characters consuming processing ……. generated error message with full PATH of PHP file.
Also worked on older un-patched version of OpenSSL.   …click here to read full BlogPost
could also see pro-details at

IE 9 [they say its good… they say it again]

Posted in Uncategorized with tags , , , , , on March 18, 2010 by abhishekkr

I came I saw But my Install failed 😉