Ko tēnei taku mihi ki ngā tāngata whenua o te rohe nei.
I greet the Indigenous people of this area.
E mahi ana au i te hapori Mahara mō te tekau mā toru tau.
Ko au te kaihautū kaupapa mō Mahara, te pūnaha kōpaki pūmanawa herekore.
E mahi ana au i Catalyst IT.
Ko Kristina Höppner ahau.
Nō reira, tēnā koutou, tēnā koutou, tēnā koutou katoa.
I've been active in the Mahara community for 13 years.
I am the project lead for Mahara, the open source portfolio system.
I work at Catalyst IT.
I am Kristina Hoeppner.
Thus, hello to you all.
I found a vulnerability in www.company.biz.
All your open source community town hall meeting minutes are publicly visible. These may contain sensitive information.
2:30am: Hello, I found a vulnerability...
3:56am: Hi. Can I get a response?
6:19am: Hi. I haven't yet heard from you.
8:27am: Can you please reply?
I ran an automated penetration test suite on demo.faily.monster and found:
Please fix and assign CVEs.
[Not the info sec researcher]
I stumbled upon repository.git and was wondering if you knew about this issue. It has a CVE number assigned.
1
2
3
4
5
1
2
In Aoteaora: CertNZ, Privacy Commission
3
4
5
Kristina Hoeppner
Dean Carter