May 8 2025
This post is the result of my first deep, hands-on experience generating a full technical article using ChatGPT!Together, we explored how to implement a challenge-response system on STM32, refine C code, modularize functions, fix compiler warnings, and prepare polished documentation. Along the way, I encountered not just technical hurdles (like sandbox download issues, expired file…..
Continue Reading
Mar 24 2025
Reported this vulnerability while doing a penetration testing of IBM Maximo Asset Management software Summary IBM Maximo Asset Management could allow an authenticated user to obtain sensitive information from the WhoAmI API. This vulnerability affects the following versions of the IBM Maximo Asset Management core product, and all other IBM Maximo Industry Solution and IBM…..
Continue Reading
Mar 23 2025
Below is the details of the reflected XSS , I have found in Cloudera Enterprise. More details can be found here :- https://www.cloudera.com/documentation/other/securitybulletins/topics/Security-Bulletin.html#DOCS-3186 Login to Cloudera manager using credentialsadmin:admin 1. Navigate the following URL which includes the XSS Payload.
Continue Reading
