https://labanskoller.se/tags/employer-posts/ Recent content in Employer Posts on Laban Sköllermark Hugo -- gohugo.io en-us This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License. Mon, 16 Mar 2026 12:30:00 +0100 https://labanskoller.se/blog/2026/03/16/three-confirmed-vulnerabilities-in-truesec-lapswebui/ Mon, 16 Mar 2026 12:30:00 +0100 https://labanskoller.se/blog/2026/03/16/three-confirmed-vulnerabilities-in-truesec-lapswebui/ I work for Reversec since April 2025. My first blog post for them tells that I found some vulnerabilities in LAPSWebUI in a client engagement and reported the findings to the vendor Truesec, who confirmed most of them and issued a new version with fixes. https://labanskoller.se/blog/2023/12/13/the-akamai-origin-disclosure-non-vulnerability/ Wed, 13 Dec 2023 12:00:00 +0100 https://labanskoller.se/blog/2023/12/13/the-akamai-origin-disclosure-non-vulnerability/ When working for my employer Sentor I discovered an origin disclosure vulnerability in Akamai GTM, but they didn’t agree it was a vulnerability. I blogged about it on the company blog: The Akamai origin disclosure non-vulnerability https://labanskoller.se/blog/2023/10/24/vulnerability-disclosure-authentication-bypass-in-auth0/ Tue, 24 Oct 2023 12:00:00 +0200 https://labanskoller.se/blog/2023/10/24/vulnerability-disclosure-authentication-bypass-in-auth0/ When working for my employer Sentor I discovered an authentication bypass vulnerability in Auth0. I blogged about it on the company blog: Vulnerability disclosure: Authentication bypass in Auth0 https://labanskoller.se/blog/2023/10/18/vulnerability-disclosure-session-fixation-in-auth0/ Wed, 18 Oct 2023 12:00:00 +0200 https://labanskoller.se/blog/2023/10/18/vulnerability-disclosure-session-fixation-in-auth0/ When working for my employer Sentor I discovered a session fixation vulnerability in Auth0. I blogged about it on the company blog: Vulnerability disclosure: Session fixation in Auth0