Two separate SpiderLabs vulnerabilities released:
- Assi Barak Discovers Magmi Zero Day
- Asaf Orpani Discovers Critical Joomla SQL injection
- Also A New IoT Vulnerability In Your Connected Tea Kettle
Links mentioned in the show:
Assi Barak - Zero-day in Magmi database client for popular e-commerce platform Magento targeted in the wild
Asaf Orpani - Joomla SQL Injection Vulnerability Exploit Results in Full Administrative Access
Listen to this and archived episodes on Trustwave SpiderLabs Radio or in iTunes.
Or you can download the MP3 file directly here.
Or listen right from your browser with this embedded player.