Database Security

Authentication

Privacy

Compliance

Identity & Access Management

Security Monitoring

Advanced Threats

Insider Threats

Vulnerability Management

Network Computing Dark Reading

Advertise

About Us

Author

Profile of Lawrence Munro

Worldwide Vice President of SpiderLabs at Trustwave

Member Since: 5/17/2017
Author
News & Commentary Posts: 1
Comments: 0

Lawrence Munro works with Trustwave's elite team of forensic investigators, researchers, and ethical hackers, SpiderLabs, as worldwide vice president of SpiderLabs at Trustwave, responsible for all penetration testing functions within the practice. Lawrence has over 12 years experience working in information technology, with a deep technical background as a penetration tester and social engineer. Lawrence is an executive committee member for CREST, a director of B-Sides London, and is currently working on a book about security assessments. Prior to joining Trustwave, Lawrence was the head of penetration testing and red teaming at KPMG. Lawrence is currently a post-graduate student at Oxford University for software and systems security.

Articles by Lawrence Munro

View Content By Month

4 Reasons the Vulnerability Disclosure Process Stalls

5/24/2017
The relationship between manufacturers and researchers is often strained. Here's why, along with some resources to help.
Post a Comment

Content by Month
May 2017 - 1
[close this box]

Hot Topics

Editors' Choice

Veterans Find New Roles in Enterprise Cybersecurity

Kelly Sheridan, Staff Editor, Dark Reading, 11/12/2018

Understanding Evil Twin AP Attacks and How to Prevent Them

Ryan Orsi, Director of Product Management for Wi-Fi at WatchGuard Technologies, 11/14/2018

7 Free (or Cheap) Ways to Increase Your Cybersecurity Knowledge

Curtis Franklin Jr., Senior Editor at Dark Reading, 11/15/2018

Live Events

Webinars

More UBM Tech
Live Events

Enterprise Connect 2019 - Build Your Comms & Collaboration Future

Communications & Collaboration 2022 at EC19 Orlando March 18-21

White Papers

4 Support Teams That Embraced Mobile

Shutting Down Banking Trojans

Design Secure Software from the First Line of Code

Picture This: Cyber Crime for Sale

Cyber Threats Are Surging Globally

More White Papers

Video

All Videos

Cartoon

Latest Comment: You know, at first glance, I liked the idea of wearable tech.. Never through it would be a security risk.

Cartoon Archive

Current Issue

10 Emerging Threats Every Enterprise Should Know About

Download This Issue!

Back Issues | Must Reads

Flash Poll

All Polls

Reports

Online Malware and Threats: A Profile of Today's Security Posture

This report offers insight on how security professionals plan to invest in cybersecurity, and how they are prioritizing their resources. Find out what your peers have planned today!

Download Now!

The Risk Management Struggle

0 comments

How Data Breaches Affect the Enterprise

0 comments

The State of IT and Cybersecurity

0 comments

More Reports

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading OR #DarkReading"

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2018-19327
PUBLISHED: 2018-11-17

An issue was discovered in JTBC(PHP) 3.0.1.7. aboutus/manage.php?type=action&action=add allows CSRF.

CVE-2018-19328
PUBLISHED: 2018-11-17

LAOBANCMS 2.0 allows install/mysql_hy.php?riqi=../ Directory Traversal.

CVE-2018-19329
PUBLISHED: 2018-11-17

GreenCMS v2.3.0603 allows remote authenticated administrators to delete arbitrary files by modifying a base64-encoded pathname in an m=admin&c=media&a=delfilehandle&id= call, related to the m=admin&c=media&a=restorefile delete button.

CVE-2018-19331
PUBLISHED: 2018-11-17

An issue was discovered in S-CMS v1.5. There is a SQL injection vulnerability in search.php via the keyword parameter.

CVE-2018-19332
PUBLISHED: 2018-11-17

An issue was discovered in S-CMS v1.5. There is a CSRF vulnerability that can add a new user via the admin/ajax.php?type=member&action=add URI.

Terms of Service
Privacy Statement
Legal Entities

To save this item to your list of favorite Dark Reading content so you can find it later in your Profile page, click the "Save It" button next to the item.

If you found this interesting or useful, please use the links to the services below to share it with other readers. You will need a free account with each service to share an item via that service.
Tweet This
[close this box]