I’ve recently discovered an arbitrary file download security vulnerability in the a magento plugin: Product File Upload. Honestly.. I’m not sure what we could have expected from a 10 dollar plugin. It opens up a huge security hole that grants access to every file on the server. The vulnerability allows anyone to basically download any file. Unrestricted.
Did you know that an extra query gets run every time you initialize a new model in Kohana?
SocialCryptoScore
SocialCryptoScore analyzes the social influcence of crypto currency and tries to predict the prices by charting social popularity. The application is built in Laravel, and uses various APIs (reddit, coinmarketcap, twitter).
Backend technologies include PHP-fpm, Nginx, and Amazon RDS. The deployment process is fully automated utilizing docker and terraform.
Frontend technologies include Webpack, ChartJS, Bootstrap, & Datatables