CINXE.COM

Shielder - Home

<!doctype html><html lang=en><head><meta charset=utf-8><meta name=viewport content="width=device-width,initial-scale=1,shrink-to-fit=no"><meta name=description content="Shielder is an independent Information Security company focused on web, mobile, network and embedded security assessments."><meta name=Copyright content="Copyright &copy; Shielder"><meta property="og:title" content="Shielder - Home"><meta property="og:type" content="website"><meta property="og:url" content="https://www.shielder.com/"><meta property="og:image" content="https://www.shielder.com//img/shield.png"><meta property="og:image:type" content="image/png"><meta property="og:image:width" content="558"><meta property="og:image:height" content="558"><meta property="og:image:alt" content="Shielder logo"><meta property="og:locale" content="en_US"><meta property="og:description" content="Shielder is an independent Information Security company focused on web, mobile, network and embedded security assessments."><meta property="og:site_name" content="Shielder"><meta property="fb:app_id" content="1651492201761174"><meta name=twitter:card content="summary"><meta name=twitter:site content="@ShielderSec"><meta name=twitter:creator content="@ShielderSec"><meta name=twitter:title content="Shielder - Home"><meta name=twitter:description content="Shielder is an independent Information Security company focused on web, mobile, network and embedded security assessments."><meta name=twitter:image content="https://www.shielder.com//img/shield.png"><link rel=apple-touch-icon sizes=57x57 href=https://www.shielder.com/favicon/apple-touch-icon-57x57.png><link rel=apple-touch-icon sizes=60x60 href=https://www.shielder.com/favicon/apple-touch-icon-60x60.png><link rel=apple-touch-icon sizes=72x72 href=https://www.shielder.com/favicon/apple-touch-icon-72x72.png><link rel=apple-touch-icon sizes=76x76 href=https://www.shielder.com/favicon/apple-touch-icon-76x76.png><link rel=apple-touch-icon sizes=114x114 href=https://www.shielder.com/favicon/apple-touch-icon-114x114.png><link rel=apple-touch-icon sizes=120x120 href=https://www.shielder.com/favicon/apple-touch-icon-120x120.png><link rel=apple-touch-icon sizes=144x144 href=https://www.shielder.com/favicon/apple-touch-icon-144x144.png><link rel=apple-touch-icon sizes=152x152 href=https://www.shielder.com/favicon/apple-touch-icon-152x152.png><link rel=apple-touch-icon sizes=167x167 href=https://www.shielder.com/favicon/apple-touch-icon-167x167.png><link rel=apple-touch-icon sizes=180x180 href=https://www.shielder.com/favicon/apple-touch-icon-180x180.png><link rel=icon type=image/png href=https://www.shielder.com/favicon/favicon-16x16.png sizes=16x16><link rel=icon type=image/png href=https://www.shielder.com/favicon/favicon-32x32.png sizes=32x32><link rel=icon type=image/png href=https://www.shielder.com/favicon/favicon-96x96.png sizes=96x96><link rel=icon type=image/png href=https://www.shielder.com/favicon/favicon-160x160.png sizes=160x160><link rel=icon type=image/png href=https://www.shielder.com/favicon/favicon-192x192.png sizes=192x192><link rel="shortcut icon" href=https://www.shielder.com/favicon/favicon.ico><link rel=preload href=https://www.shielder.com/fontawesome/webfonts/fa-regular-400.woff2 as=font type=font/woff2 crossorigin><link rel=preload href=https://www.shielder.com/fontawesome/webfonts/fa-solid-900.woff2 as=font type=font/woff2 crossorigin><link rel=preload href=https://www.shielder.com/fontawesome/webfonts/fa-brands-400.woff2 as=font type=font/woff2 crossorigin><link rel=preload href=https://www.shielder.com/fontawesome/webfonts/fa-brands-400.woff2 as=font type=font/woff2 crossorigin><title>Shielder - Home </title><link rel=stylesheet defer href=https://www.shielder.com/css/bootstrap.min.css><link rel=stylesheet defer href=https://www.shielder.com/css/style.css><link rel=stylesheet async href=https://www.shielder.com/fontawesome/css/all.min.css><link rel=stylesheet async href=https://www.shielder.com/css/dracula.css><link rel=alternate type=application/rss+xml title="Shielder Blog" href=https://www.shielder.com/blog/index.xml><link rel=alternate type=application/rss+xml title="Shielder Advisories" href=https://www.shielder.com/advisories/index.xml></head><body class=bg-primary><nav class="navbar navbar-expand-lg fixed-top bg-primary p-3 px-md-5 px-lg-3 px-xl-5"><a class=navbar-brand href=https://www.shielder.com/ title=homepage><img src=https://www.shielder.com/img/logoshielder.svg alt="shielder logo homepage" class=w-75></a> <button class="navbar-toggler text-white p-0" type=button data-toggle=collapse data-target=#navbarNav aria-controls=navbarNav aria-expanded=false aria-label="Toggle navigation"> <i class="fas fa-bars"></i></button><div class="collapse navbar-collapse justify-content-end pt-2" id=navbarNav><ul class=navbar-nav><li class="nav-item p-2"><a class="nav-link text-white" href=https://www.shielder.com/ title=Home>Home</a></li><li class="nav-item p-2"><a class="nav-link text-white" href=https://www.shielder.com/company title=Company>Company</a></li><li class="nav-item p-2"><a class="nav-link text-white" href=https://www.shielder.com/services title=Services>Services</a></li><li class="nav-item p-2"><a class="nav-link text-white" href=https://www.shielder.com/advisories title=Advisories>Advisories</a></li><li class="nav-item p-2"><a class="nav-link text-white" href=https://www.shielder.com/blog title=Blog>Blog</a></li><li class="nav-item p-2"><a class="nav-link text-white" href=https://www.shielder.com/careers title=Careers>Careers</a></li><li class="nav-item p-2"><a class="nav-link text-white" href=https://www.shielder.com/contacts title=Contacts>Contacts</a></li><li class="nav-item p-2"><button class="nav-link bg-transparent border-0 btn btn-primary dropdown-toggle rounded-0" type=button id=language-selector data-toggle=dropdown aria-haspopup=true aria-expanded=false> ENG</button><div class="dropdown-menu dropdown-menu-right" aria-labelledby=language-selector><a class=dropdown-item href=https://www.shielder.com/ title=ENG>ENG</a> <a class=dropdown-item href=https://www.shielder.com/it/ title=ITA>ITA</a></div></li></ul></div></nav><main><header class=masthead><div class="container d-flex h-100 align-items-center"><div><h1 class=text-primary>We are Shielder,</h1><h2 class=text-white>an IT Security company.</h2><p class=text-white>We are dynamic and talented. Our specialists are our beating heart and that’s why we never stop. We adapt ourselves to an ever changing world while bearing in mind what brought us here: the need to understand each and every bit.</p><a class="text-decoration-none text-white btn btn-lg btn-outline-primary mt-5 discover rounded-pill" href=https://www.shielder.com//company><i class="far fa-compass pr-2 text-primary"></i> Inspect element <i class="fas fa-arrow-right discover-arrow"></i></a></div></div></header><section id=services-home><div class=container><div class="row mb-5"><h3 class="text-uppercase text-primary col-12 mb-4">What we do</h3><p class="col-12 text-white bigger mb-0">Rely on us,</p><p class="col-12 font-weight-bold text-white bigger">we will raise your barriers.</p></div><div class=row><div class="col-12 col-sm-4 col-md-4 mb-4 mb-md-5 mb-md-0 text-center"><a href=https://www.shielder.com//services/application-security title="Application Security"><img src=https://www.shielder.com/img/application-security.svg alt="Application Security" class=service-img></a></div><div class="col-12 col-sm-4 col-md-4 mb-4 mb-md-5 mb-md-0 text-center"><a href=https://www.shielder.com//services/network-security title="Network Security"><img src=https://www.shielder.com/img/network-security.svg alt="Application Security" class=service-img></a></div><div class="col-12 col-sm-4 col-md-4 mb-4 mb-md-5 mb-md-0 text-center"><a href=https://www.shielder.com//services/iot-security title="IoT Security"><img src=https://www.shielder.com/img/iot-security.svg alt="Application Security" class=service-img></a></div></div></div></section><section id=advisory><div class=container><div class="row mb-5"><div class="col-12 col-md-6"><p class=mb-md-0><span class="bigger text-white pr-5 align-middle">Research</span></p></div><p class="col-12 col-md-6 text-primary mb-0 d-flex justify-content-md-end align-items-center"><a class="text-decoration-none text-primary" title="show all advisories" href=https://www.shielder.com//advisories>Show all</a></p></div><div class=row><div class="col-12 mb-5"><div class=accordion id=accordion40><div class="card bg-transparent border"><div class=row><div class="col-12 col-md-1 bg-secondary d-flex align-items-center py-1 py-md-0"><p class="text-uppercase accordion-category mb-0 font-weight-bold pl-3 pl-md-0 Advisory"><a class="text-uppercase text-decoration-none smaller text-secondary" title=Advisory href=/types/advisory>Advisory</a></p></div><div class="col-12 col-md-11"><div class="card-header pb-4" id=heading40><div class=row><div class="col-12 text-white mb-2 mb-md-4"><p>28/08/2024</p></div><div class="col-12 col-md-3 d-flex align-items-center mb-3 mb-md-0"><img src=https://www.shielder.com//img/advisory.png class=advisory-img alt=[Advisory]> <span class="text-white pl-2"><a class="text-decoration-none text-white" title=Advisory href=/types/advisory>Advisory</a></span></div><div class="col-12 col-sm-10 col-md-8 d-flex align-items-center"><p class="font-weight-bold text-white mb-4 mb-sm-0"><a class="text-decoration-none text-white" title="Vtiger CRM (<= 8.1.0) Broken Access Control in Migration module" href=https://www.shielder.com/advisories/vtiger-migration-bac/>Vtiger CRM (&lt;= 8.1.0) Broken Access Control in Migration module</a></p></div><div class="col-12 col-sm-2 col-md-1 px-2 px-lg-3 text-center text-md-right"><button class="btn btn-outline-primary rounded-pill btn-link text-left text-decoration-none" type=button data-toggle=collapse data-target=#collapse40 aria-expanded=false aria-controls=collapse40> +</button></div></div></div><div id=collapse40 class=collapse aria-labelledby=heading40}} data-parent=#accordion40><div class=row><div class="col-12 col-md-3 d-flex align-items-center"></div><div class="col-12 col-md-8"><div class="card-body text-white pl-md-2"><p>Vtiger CRM &lt;= 8.1.0 does not correctly check user's privileges. A low-privileged user can interact directly with the `Migration` administrative module to disable arbitrary modules in the instance.</p><p><a class=text-decoration-none title="Vtiger CRM (<= 8.1.0) Broken Access Control in Migration module" href=https://www.shielder.com/advisories/vtiger-migration-bac/>Read more</a></p></div></div></div></div></div></div></div></div></div><div class="col-12 mb-5"><div class=accordion id=accordion39><div class="card bg-transparent border"><div class=row><div class="col-12 col-md-1 bg-secondary d-flex align-items-center py-1 py-md-0"><p class="text-uppercase accordion-category mb-0 font-weight-bold pl-3 pl-md-0 Advisory"><a class="text-uppercase text-decoration-none smaller text-secondary" title=Advisory href=/types/advisory>Advisory</a></p></div><div class="col-12 col-md-11"><div class="card-header pb-4" id=heading39><div class=row><div class="col-12 text-white mb-2 mb-md-4"><p>28/08/2024</p></div><div class="col-12 col-md-3 d-flex align-items-center mb-3 mb-md-0"><img src=https://www.shielder.com//img/advisory.png class=advisory-img alt=[Advisory]> <span class="text-white pl-2"><a class="text-decoration-none text-white" title=Advisory href=/types/advisory>Advisory</a></span></div><div class="col-12 col-sm-10 col-md-8 d-flex align-items-center"><p class="font-weight-bold text-white mb-4 mb-sm-0"><a class="text-decoration-none text-white" title="Vtiger CRM (<= 8.1.0) SQL Injection in MailManager module" href=https://www.shielder.com/advisories/vtiger-mailmanager-sqli/>Vtiger CRM (&lt;= 8.1.0) SQL Injection in MailManager module</a></p></div><div class="col-12 col-sm-2 col-md-1 px-2 px-lg-3 text-center text-md-right"><button class="btn btn-outline-primary rounded-pill btn-link text-left text-decoration-none" type=button data-toggle=collapse data-target=#collapse39 aria-expanded=false aria-controls=collapse39> +</button></div></div></div><div id=collapse39 class=collapse aria-labelledby=heading39}} data-parent=#accordion39><div class=row><div class="col-12 col-md-3 d-flex align-items-center"></div><div class="col-12 col-md-8"><div class="card-body text-white pl-md-2"><p>Vtiger CRM &lt;= 8.1.0 has a SQL injection vulnerability in the MailManager module.</p><p><a class=text-decoration-none title="Vtiger CRM (<= 8.1.0) SQL Injection in MailManager module" href=https://www.shielder.com/advisories/vtiger-mailmanager-sqli/>Read more</a></p></div></div></div></div></div></div></div></div></div><div class="col-12 mb-5"><div class=accordion id=accordion38><div class="card bg-transparent border"><div class=row><div class="col-12 col-md-1 bg-secondary d-flex align-items-center py-1 py-md-0"><p class="text-uppercase accordion-category mb-0 font-weight-bold pl-3 pl-md-0 Advisory"><a class="text-uppercase text-decoration-none smaller text-secondary" title=Advisory href=/types/advisory>Advisory</a></p></div><div class="col-12 col-md-11"><div class="card-header pb-4" id=heading38><div class=row><div class="col-12 text-white mb-2 mb-md-4"><p>18/04/2024</p></div><div class="col-12 col-md-3 d-flex align-items-center mb-3 mb-md-0"><img src=https://www.shielder.com//img/advisory.png class=advisory-img alt=[Advisory]> <span class="text-white pl-2"><a class="text-decoration-none text-white" title=Advisory href=/types/advisory>Advisory</a></span></div><div class="col-12 col-sm-10 col-md-8 d-flex align-items-center"><p class="font-weight-bold text-white mb-4 mb-sm-0"><a class="text-decoration-none text-white" title="Element Android (<1.6.12) Intent Redirection" href=https://www.shielder.com/advisories/element-android-intent-redirection/>Element Android (&lt;1.6.12) Intent Redirection</a></p></div><div class="col-12 col-sm-2 col-md-1 px-2 px-lg-3 text-center text-md-right"><button class="btn btn-outline-primary rounded-pill btn-link text-left text-decoration-none" type=button data-toggle=collapse data-target=#collapse38 aria-expanded=false aria-controls=collapse38> +</button></div></div></div><div id=collapse38 class=collapse aria-labelledby=heading38}} data-parent=#accordion38><div class=row><div class="col-12 col-md-3 d-flex align-items-center"></div><div class="col-12 col-md-8"><div class="card-body text-white pl-md-2"><p>Element Android (&lt;1.6.12) is affected by an intent redirection, allowing a third-party malicious application to start any internal activity by passing extra parameters. Possible impact includes making Element Android display an arbitrary web page, executing arbitrary JavaScript, bypassing PIN code protection, and account takeover by spawning a login screen to send credentials to an arbitrary Matrix home server.</p><p><a class=text-decoration-none title="Element Android (<1.6.12) Intent Redirection" href=https://www.shielder.com/advisories/element-android-intent-redirection/>Read more</a></p></div></div></div></div></div></div></div></div></div></div></div></section><section id=blog-home><div class=container-fluid><div class="row border border-white border-right-0 border-left-0"><div class="col-1 border border-white border-top-0 border-bottom-0 border-left-0"></div><h3 class="col-4 text-uppercase text-primary pt-4 pb-5 text-center mb-0 border border-white border-top-0 border-bottom-0 border-left-0">Our blog</h3><div class="col-5 border border-white border-top-0 border-bottom-0 border-left-0 pt-2 pl-3 pl-md-5"><p class="bigger text-white mb-0"><span>Latest </span><span class=font-weight-bold>News</span></p></div></div></div><div class="container mt-5"><div class=row><div class="col-10 offset-1 col-md-4 offset-md-0 mb-5 mb-md-0"><div class=row><div class="col-12 col-lg-10 text-center"><img src=https://www.shielder.com//img/blog/home-2.svg class=svg-image alt="Karmada Security Audit"></div><div class="col-12 col-lg-10 mt-4"><p class=font-weight-bold><a class=text-white title="Karmada Security Audit" href=https://www.shielder.com/blog/2025/01/karmada-security-audit/>Karmada Security Audit</a></p></div><p class="col-6 col-lg-4 text-white text-uppercase font-weight-light smaller">By <a class="smaller text-white" title=suidpit href=/authors/suidpit>suidpit</a></p><p class="col-6 col-lg-4 offset-lg-2 text-white text-uppercase font-weight-light smaller text-right">16/01/2025</p></div></div><div class="col-10 offset-1 col-md-4 offset-md-0 mb-5 mb-md-0"><div class=row><div class="col-12 col-lg-10 text-center"><img src=https://www.shielder.com//img/blog/home-1.svg class=svg-image alt="A Journey From `sudo iptables` To Local Privilege Escalation"></div><div class="col-12 col-lg-10 mt-4"><p class=font-weight-bold><a class=text-white title="A Journey From `sudo iptables` To Local Privilege Escalation" href=https://www.shielder.com/blog/2024/09/a-journey-from-sudo-iptables-to-local-privilege-escalation/>A Journey From <code>sudo iptables</code> To Local Privilege Escalation</a></p></div><p class="col-6 col-lg-4 text-white text-uppercase font-weight-light smaller">By <a class="smaller text-white" title=suidpit href=/authors/suidpit>suidpit</a> & <a class="smaller text-white" title=smaury href=/authors/smaury>smaury</a></p><p class="col-6 col-lg-4 offset-lg-2 text-white text-uppercase font-weight-light smaller text-right">20/09/2024</p></div></div><div class="col-10 offset-1 col-md-4 offset-md-0 mb-5 mb-md-0"><div class=row><div class="col-12 col-lg-10 text-center"><img src=https://www.shielder.com//img/blog/home-3.svg class=svg-image alt="Boost Security Audit"></div><div class="col-12 col-lg-10 mt-4"><p class=font-weight-bold><a class=text-white title="Boost Security Audit" href=https://www.shielder.com/blog/2024/05/boost-security-audit/>Boost Security Audit</a></p></div><p class="col-6 col-lg-4 text-white text-uppercase font-weight-light smaller">By <a class="smaller text-white" title=thezero href=/authors/thezero>thezero</a></p><p class="col-6 col-lg-4 offset-lg-2 text-white text-uppercase font-weight-light smaller text-right">22/05/2024</p></div></div></div></div></section></main><footer class="pt-5 pb-4 px-3 px-md-0"><div class=container><div class="row text-center"><div class="col-12 col-lg-4 text-white border-bottom mb-4 pb-lg-0 mb-lg-0"><p class="text-uppercase font-weight-bold">Info</p><p class=footer-info>Shielder S.p.A.</p><p class=footer-info>P.I. 11435310013</p><p class=footer-info>REA TO - 1213132</p><p class=footer-info>Registered Capital: 81.000,00 €</p><p><a class="text-decoration-none text-white" target=_blank rel=noopener href="https://www.google.it/maps/place/Shielder/@44.8833849,7.3303863,17z/data=!3m1!4b1!4m5!3m4!1s0x4788250440849fa5:0x74cf10f2092abc85!8m2!3d44.8833849!4d7.332575" title="corporate headquarters">Via Palestro, 1/C<br>10064 Pinerolo (TO) Italy</a></p><div class="iso-logos row justify-content-center mb-4 pb-lg-0 mb-lg-0"><div class=col-3><img alt=ISO27001 src=/img/iso27001.png></div><div class=col-3><img alt=ISO9001 src=/img/iso9001.png></div></div></div><div class="col-12 col-lg-4 text-white border-bottom mb-4 pb-lg-0 mb-lg-0"><p class="text-uppercase font-weight-bold">Contacts</p><p class=footer-contact><a class="text-decoration-none text-white" href=mailto:info@shielder.com title="email Shielder">info@shielder.com</a></p><p class=footer-contact>Landline: <a class="text-decoration-none text-white" href=tel:+390121393642 title=Landline>(+39) 0121 - 39 36 42</a></p><p class=footer-contact>Commercial: <a class="text-decoration-none text-white" href=tel:+393453031983 title=Commercial>(+39) 345 - 30 31 983</a></p><p class=footer-contact>Technical: <a class="text-decoration-none text-white" href=tel:+393931666814 title=Technical>(+39) 393 - 16 66 814</a></p><p><span><a href=https://twitter.com/ShielderSec title="Shielder Twitter profile" target=_blank rel="noopener me" class=text-white><i class="fab fa-x-twitter bigger-icon"></i></a> </span><span class=pl-3><a href=https://infosec.exchange/@Shielder title="Shielder Mastodon profile" target=_blank rel="noopener me" class=text-white><i class="fab fa-mastodon bigger-icon"></i></a> </span><span class=px-3><a href=https://www.linkedin.com/company/shielder title="Shielder LinkedIn profile" target=_blank rel="noopener me" class=text-white><i class="fab fa-linkedin bigger-icon"></i></a> </span><span><a href=https://github.com/shieldersec title="Shielder Github profile" target=_blank rel="noopener me" class=text-white><i class="fab fa-github bigger-icon"></i></a></span></p></div><div class="col-12 col-lg-4 text-white mb-4 pb-lg-0 mb-lg-0"><p class="text-uppercase font-weight-bold">Sitemap</p><p><a class="text-decoration-none text-white" title=Home href=https://www.shielder.com/>Home</a></p><p><a class="text-decoration-none text-white" title=Company href=https://www.shielder.com/company>Company</a></p><p><a class="text-decoration-none text-white" title=Services href=https://www.shielder.com/services>Services</a></p><p><a class="text-decoration-none text-white" title=Advisories href=https://www.shielder.com/advisories>Advisories</a></p><p><a class="text-decoration-none text-white" title=Blog href=https://www.shielder.com/blog>Blog</a></p><p><a class="text-decoration-none text-white" title=Careers href=https://www.shielder.com/careers>Careers</a></p><p><a class="text-decoration-none text-white" title=Contacts href=https://www.shielder.com/contacts>Contacts</a></p></div><div class="col-12 mt-5"><span class="mb-2 mb-lg-0 border-md-right pr-2 text-white d-block d-lg-inline">Copyright © Shielder 2014 - 2025</span> <span class="mb-2 mb-lg-0 border-md-right pr-2 pl-1 text-white d-block d-lg-inline"><a class="text-decoration-none text-white" href=/disclosure-policy title="Disclosure Policy">Disclosure policy</a></span> <span class="mb-2 mb-lg-0 pr-2 pl-1 text-white d-block d-lg-inline"><a class="text-decoration-none text-white" href=/privacy-policy title="Privacy Policy">Privacy policy</a></span></div></div></div></footer><script src=https://www.shielder.com/js/jquery.min.js></script><script src=https://www.shielder.com/js/app.js></script><script src=https://www.shielder.com/js/bootstrap.bundle.min.js></script></body></html>

Pages: 1 2 3 4 5 6 7 8 9 10