1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Pornhub said to be compromised, shell access available for $1,000

Discussion in 'CSO' started by RSS, May 15, 2016.

  1. RSS

    RSS New Member Member

    On Saturday evening, an underground researcher running the 1x0123 Twitter account offered command injection abilities and shell access to a subdomain on Pornhub for a mere $1,000 USD.

    The offer included two images in order to demonstrate access to the Pornhub server, and when asked how the shell was uploaded, 1x0123 said a vulnerability in the user profile script that handles images enabled the shell's upload.

    However, 1x0123 stated the user profile flaw isn't related to the recently disclosed ImageMagick vulnerability.

    To read this article in full or to leave a comment, please click here

    Continue reading...

Share This Page