As the issue is now fixed, I can disclose the details of the @IndiaPostOffice vulnerability.
-
-
I opened EmployeeBankDetails2018-02-23.xls for example. There was a lot of bank accounts inside.pic.twitter.com/vjFhZOhW3j
Show this thread -
For the record, I was not the 1st. Someone created 3 files on 13-04-2017 in order to exploit the vulnerability.pic.twitter.com/lgiIjePnHB
Show this thread -
This issue has been found by an
#Indian security researcher who want to stay anonymous. All credits goes to him.Show this thread
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.