Two separate SpiderLabs vulnerabilities released:
- Assi Barak Discovers Magmi Zero Day
- Asaf Orpani Discovers Critical Joomla SQL injection
- Also A New IoT Vulnerability In Your Connected Tea Kettle
Links mentioned in the show:
Assi Barak - Zero-day in Magmi database client for popular e-commerce platform Magento targeted in the wild
Asaf Orpani - Joomla SQL Injection Vulnerability Exploit Results in Full Administrative Access
Or you can download the MP3 file directly here.
Or listen right from your browser with this embedded player.