Mail Thread Index
- [Full-disclosure] [ANNOUNCE] CVE-2014-0002 and CVE-2014-0003 - Apache Camel critical disclosure vulnerability,
Christian Mueller
- [Full-disclosure] CVE-2014-1216 - Remote Command Execution in Fitnesse Wiki,
Portcullis Advisories
- [Full-disclosure] [CVE-2013-6231] Remote Privilege Escalation in SpagoBI v4.0,
Christian Catalano
- [Full-disclosure] [CVE-2013-6232] Persistent Cross-Site Scripting (XSS) in SpagoBI v4.0,
Christian Catalano
- [Full-disclosure] [CVE-2013-6233] Persistent HTML Script Insertion permits offsite-bound forms in SpagoBI v4.0,
Christian Catalano
- [Full-disclosure] [CVE-2013-6234] XSS File Upload in SpagoBI v4.0,
Christian Catalano
- [Full-disclosure] [CVE-2014-2206] GetGo Download Manager HTTP Response Header Buffer Overflow Remote Code Execution,
Julien Ahrens
- [Full-disclosure] [SECURITY] [DSA 2868-1] php5 security update,
Salvatore Bonaccorso
- [Full-disclosure] CSRF in WordPress plugin Google Analytics MU 2.3,
Harry Metcalfe
- [Full-disclosure] CVE-2014-2238 -- MantisBT aux mod,
Brandon Perry
- [Full-disclosure] [Announce] Apache Shiro 1.2.3 Released - Security Advisory,
Brian Demers
- [Full-disclosure] [CVE-2014-0334] XSS in CMS made simple, plus other security issues,
Pedro Ribeiro
- [Full-disclosure] Google Inc., (Youtube.com) Unrestricted File Upload Vulnerability.,
Nicholas Lemonias.
- [Full-disclosure] [SECURITY] [DSA 2869-1] gnutls26 security update,
Yves-Alexis Perez
- [Full-disclosure] [CFP] Hack In Paris 2014 CFP is postponed to March 10,
Damien Cauquil
- [Full-disclosure] Netvolution CMS 3 SQL injection,
Project Zero Labs
- [Full-disclosure] [Call for Presenters] Security BSides Las Vegas,
BSidesLV Info
- [Full-disclosure] [CVE-2014-0072] Apache Cordova File-Transfer insecure defaults,
Ian Clelland
- [Full-disclosure] [CVE-2014-0073] Apache Cordova In-App-Browser privilege escalation,
Ian Clelland
- [Full-disclosure] CVE-2014-1599 - 39 Type-1 XSS in SFR ADSL/Fiber Box,
alejandr0.w3b.p0wn3r
- [Full-disclosure] Google's (YouTube) Arbitrary File Upload Vulnerability Report with PoC,
Nicholas Lemonias.
- [Full-disclosure] Capstone disassembly framework 2.1 released!,
Nguyen Anh Quynh
- [Full-disclosure] Cisco Security Advisory: Multiple Vulnerabilities in Cisco Wireless LAN Controllers,
Cisco Systems Product Security Incident Response Team
- [Full-disclosure] Cisco Security Advisory: Cisco Small Business Router Password Disclosure Vulnerability,
Cisco Systems Product Security Incident Response Team
- [Full-disclosure] Tool Release: nsdtool - netgear switch discovery,
Curesec Research Team
- [Full-disclosure] [CVE-2014-0683]Router Cisco RV110W - RV215W - CVR100W - Bypass Login Page - Admin Password Disclosure,
Gustavo Speranza
- [Full-disclosure] [Security-news] SA-CONTRIB-2014-029 - Mime Mail - Access Bypass,
security-news
- [Full-disclosure] [Security-news] SA-CONTRIB-2014-028 - Masquerade - Access bypass,
security-news
- [Full-disclosure] [Security-news] SA-CONTRIB-2014-027 - NewsFlash Theme - XSS,
security-news
- Re: [Full-disclosure] [OT] pls ignore,
Gaurang Pandya
- [Full-disclosure] SonicWall Dashboard Backend Server - Client Side Cross Site Scripting Web Vulnerability,
Vulnerability Lab
- [Full-disclosure] [ANN] Struts 2.3.16.1 GA release available - security fix,
Lukasz Lenart
- [Full-disclosure] OT What is happening with bitcoins?,
Georgi Guninski
- [Full-disclosure] Rails and redirections,
Brandon Perry
- [Full-disclosure] XSS in url for access of Confirmation Required in box for antispam from company AKER (CVE-2013-6037),
William Costa
- [Full-disclosure] Live PoC - Confirming completion of arbitrary file uploads to You Tube's Servers,
Nicholas Lemonias.
- [Full-disclosure] SEC Consult SA-20140307-0 :: Unauthenticated access & manipulation of settings in Huawei E5331 MiFi mobile hotspot,
SEC Consult Vulnerability Lab
- [Full-disclosure] Garage4Hackers Ranchoddas Series - Part 2 on Reverse Engineering - Free Webinar,
Sandeep Kamble
- [Full-disclosure] DAVOSET v.1.1.8,
MustLive
- [Full-disclosure] Yahoo Bug Bounty Program Vulnerability #1 XSS on ads.yahoo.com,
Stefan Schurtz
- [Full-disclosure] Yahoo Bug Bounty Program Vulnerability #3 XSS on de-mg42.mail.yahoo.com,
Stefan Schurtz
[Full-disclosure] Yahoo Bug Bounty Program Vulnerability #4 #5 #6 Cross-site Scripting vulnerabilities,
Stefan Schurtz
[Full-disclosure] [SECURITY] [DSA 2870-1] libyaml-libyaml-perl security update,
Salvatore Bonaccorso
[Full-disclosure] MODX SQLi from oss-sec,
Brandon Perry
Re: [Full-disclosure] SQL injection in MODX,
Brandon Perry
Re: [Full-disclosure] Hacking in Schools,
coderman
[Full-disclosure] [HTTPCS] ClanSphere 'where' Cross Site Scripting Vulnerability,
HTTPCS
[Full-disclosure] OXATIS 'EMSJ' Cross Site Scripting Vulnerability,
HTTPCS
[Full-disclosure] List Charter,
John Cartwright
[Full-disclosure] [ MDVSA-2014:048 ] gnutls,
security
[Full-disclosure] [ MDVSA-2014:049 ] subversion,
security
[Full-disclosure] [SECURITY] [DSA 2871-1] wireshark security update,
Moritz Muehlenhoff
[Full-disclosure] [SECURITY] [DSA 2872-1] udisks security update,
Moritz Muehlenhoff
[Full-disclosure] [ MDVSA-2014:050 ] wireshark,
security
[Full-disclosure] AST-2014-001: Stack Overflow in HTTP Processing of Cookie Headers.,
Asterisk Security Team
[Full-disclosure] AST-2014-002: Denial of Service Through File Descriptor Exhaustion with chan_sip Session-Timers,
Asterisk Security Team
[Full-disclosure] AST-2014-003: Remote Crash Vulnerability in PJSIP channel driver,
Asterisk Security Team
[Full-disclosure] AST-2014-004: Remote Crash Vulnerability in PJSIP Channel Driver Subscription Handling,
Asterisk Security Team
[Full-disclosure] Hackito Ergo Sum 2014 CFP,
Alexandre De Oliveira
[Full-disclosure] NotSoSecure CTF [April 18th to 20th 2014],
Sumit Siddharth
[Full-disclosure] Passwords Analyser Tool,
Nahuel Grisolia
[Full-disclosure] Apple TV log file password disclosure,
David Schuetz
[Full-disclosure] [CVE-2013-6835] - iOS 7.0.6 Safari/Facetime-Audio Privacy issue,
Guillaume Ross
[Full-disclosure] CORE-2014-0002 - Oracle VirtualBox 3D Acceleration Multiple Memory Corruption Vulnerabilities,
CORE Advisories Team
[Full-disclosure] [SECURITY] [DSA 2873-1] file security update,
Salvatore Bonaccorso
[Full-disclosure] NEW VMSA-2014-0002 VMware vSphere updates to third party libraries,
"VMware Security Response Center"
[Full-disclosure] Medium severity flaw in BlackBerry QNX Neutrino RTOS,
Tim Brown
[Full-disclosure] CVE-2014-0054 Spring MVC Incomplete fix for CVE-2013-4152 / CVE-2013-6429 (XXE),
Pivotal Security Team
[Full-disclosure] CVE-2014-0097 Spring Security Blank password may bypass user authentication,
Pivotal Security Team
[Full-disclosure] CVE-2014-1904 XSS when using Spring MVC,
Pivotal Security Team
[Full-disclosure] CVE-2014-1686 -- Information disclosure: webserver source path in Mediawiki 1.18.0,
alejandr0.w3b.p0wn3r
[Full-disclosure] Remote Command Injection in Arabic Prawn 0.0.1 Ruby Gem,
Larry W. Cashdollar
[Full-disclosure] [SECURITY] [DSA 2874-1] mutt security update,
Moritz Muehlenhoff
[Full-disclosure] [SECURITY] [DSA 2875-1] cups-filters security update,
Moritz Muehlenhoff
[Full-disclosure] [SECURITY] [DSA 2876-1] cups security update,
Moritz Muehlenhoff
[Full-disclosure] [Security-news] SA-CONTRIB-2014-030 - SexyBookmarks - Information Disclosure,
security-news
[Full-disclosure] Multiplus XSS in Proxmox Mail Gateway 3.1 (CVE-2014-2325),
William Costa
[Full-disclosure] [Security-news] SA-CONTRIB-2014-031 - Webform Template - Access Bypass,
security-news
[Full-disclosure] QUANTUMSQUIRREL - attrition.org unmasked as NSA TAO OP,
coderman
[Full-disclosure] [ MDVSA-2014:051 ] file,
security
[Full-disclosure] [ MDVSA-2014:052 ] net-snmp,
security
[Full-disclosure] [ MDVSA-2014:053 ] libssh,
security
[Full-disclosure] [ MDVSA-2014:054 ] otrs,
security
[Full-disclosure] [ MDVSA-2014:055 ] owncloud,
security
[Full-disclosure] [SECURITY] [DSA 2877-1] lighttpd security update,
Michael Gilbert
[Full-disclosure] Byte CMS Cross Site Scripting Vulnerabilities,
Project Zero Labs
[Full-disclosure] PowerArchiver: Uses insecure legacy PKZIP encryption when AES is selected (CVE-2014-2319),
Hanno Böck
[Full-disclosure] BSides Connecticut - Call for Speakers,
William Reyor
[Full-disclosure] Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Google vulnerabilities with PoC,
antisnatchor
- Re: [Full-disclosure] Google vulnerabilities with PoC,
Julius Kivimäki
- Re: [Full-disclosure] Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Google vulnerabilities with PoC,
Julius Kivimäki
- Re: [Full-disclosure] Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Google vulnerabilities with PoC,
Julius Kivimäki
- Message not available
- Re: [Full-disclosure] Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Google vulnerabilities with PoC,
Julius Kivimäki
- Message not available
- [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Google vulnerabilities with PoC,
Julius Kivimäki
- Re: [Full-disclosure] Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Google vulnerabilities with PoC,
Michal Zalewski
- Re: [Full-disclosure] Google vulnerabilities with PoC,
Jerome Athias
- Re: [Full-disclosure] Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Google vulnerabilities with PoC,
Mario Vilas
- Re: [Full-disclosure] Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Google vulnerabilities with PoC,
Mario Vilas
- Message not available
- [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
antisnatchor
- Message not available
- [Full-disclosure] Fwd: Fwd: Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
antisnatchor
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Julius Kivimäki
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Thomas MacKenzie
- Message not available
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Ulisses Montenegro
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Mike Hale
- Message not available
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
antisnatchor
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Mario Vilas
- Message not available
- Message not available
- Message not available
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Nicholas Lemonias.
- Message not available
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
J. Tozo
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Krzysztof Kotowicz
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Krzysztof Kotowicz
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Yvan Janssens
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Colette Chamberland
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
R D
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Mario Vilas
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Julius Kivimäki
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
R D
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Krzysztof Kotowicz
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Michal Zalewski
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Mario Vilas
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Colette Chamberland
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
David H
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
antisnatchor
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Mario Vilas
- Re: [Full-disclosure] Fwd: Fwd: Google vulnerabilities with PoC,
Mario Vilas
- Re: [Full-disclosure] Google vulnerabilities with PoC,
Mario Vilas
- Re: [Full-disclosure] Google vulnerabilities with PoC,
Sergio 'shadown' Alvarez
- Message not available
- [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Sergio 'shadown' Alvarez
- Message not available
- Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Google vulnerabilities with PoC,
Mario Vilas
- Re: [Full-disclosure] Google vulnerabilities with PoC,
Alfredo Ortega
- Re: [Full-disclosure] Google vulnerabilities with PoC,
Alfredo Ortega
- Re: [Full-disclosure] Google vulnerabilities with PoC,
Michael Smith
- Re: [Full-disclosure] Google vulnerabilities with PoC,
antisnatchor
- Re: [Full-disclosure] Google vulnerabilities with PoC,
Nicholas Lemonias.
- Re: [Full-disclosure] Google vulnerabilities with PoC,
Michal Zalewski
- Re: [Full-disclosure] Google vulnerabilities with PoC,
Mario Vilas
- Re: [Full-disclosure] Google vulnerabilities with PoC,
Alfredo Ortega
Re: [Full-disclosure] Google vulnerabilities with PoC,
Pedro Ribeiro
Re: [Full-disclosure] Google vulnerabilities with PoC,
Georgi Guninski
<Possible follow-ups>
Re: [Full-disclosure] Google vulnerabilities with PoC,
Nicholas Lemonias.
Re: [Full-disclosure] Google vulnerabilities with PoC,
M Kirschbaum
Re: [Full-disclosure] Google vulnerabilities with PoC,
Alfred Beese
Re: [Full-disclosure] Google vulnerabilities with PoC,
T Imbrahim
[Full-disclosure] [ MDVSA-2014:056 ] apache-commons-fileupload,
security
[Full-disclosure] Capstone disassembly framework 2.1.1 released!,
Nguyen Anh Quynh
[Full-disclosure] [ MDVSA-2014:057 ] mediawiki,
security
[Full-disclosure] [SECURITY] [DSA 2878-1] virtualbox security update,
Moritz Muehlenhoff
[Full-disclosure] [ MDVSA-2014:058 ] freeradius,
security
[Full-disclosure] CarolinaCon-10 - May 2014 - FINAL ANNOUNCEMENT,
Vic Vandal
[Full-disclosure] [CVE-2014-2087] Free Download Manager CDownloads_Deleted::UpdateDownload() Buffer Overflow Remote Code Execution,
Julien Ahrens
[Full-disclosure] ActiVPN launches its security bug bounty,
Ninja ActiVPN
[Full-disclosure] WatchGuard Fireware XTM devices contain a cross-site scripting vulnerability (CVE-2014-0338),
William Costa
[Full-disclosure] [SECURITY] [DSA 2879-1] libssh security update,
Raphael Geissert
[Full-disclosure] Fwd: Hacking Exposed: Virtualization & Cloud Computing: Secrets & Solutions,
Kristian Erik Hermansen
[Full-disclosure] Webcast Reminder: Garage4Hackers Ranchoddas Series 2 on Reverse Engineering,
Sandeep Kamble
[Full-disclosure] [CVE-2014-2339] GNUboard SQL Injection Vulnerability,
claepo.wang
[Full-disclosure] MacOSX Safari Firefox Kaspersky RegExp Remote/Local Denial of Service,
[CXSEC]
[Full-disclosure] Trixbox all versions , Remote root exploit,
0u7 5m4r7
[Full-disclosure] [ MDVSA-2014:059 ] php,
security
[Full-disclosure] [ MDVSA-2014:060 ] imapsync,
security
[Full-disclosure] [ MDVSA-2014:061 ] oath-toolkit,
security
[Full-disclosure] CosmoShop unprotected admin-script "pwd.cgi" probably in all versions > 8.0,
Rene Fischer
Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Chris Thompson
<Possible follow-ups>
Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
M Kirschbaum
Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Alfred Beese
Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
T Imbrahim
Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
T Imbrahim
Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
T Imbrahim
Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
T Imbrahim
Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
Joxean Koret
Re: [Full-disclosure] Fwd: Google vulnerabilities with PoC,
T Imbrahim
Re: [Full-disclosure] Full-Disclosure Digest, Vol 109, Issue 32,
ChienD
[Full-disclosure] XSS Vulnerability in the Youtube Gallery 3.4.0 Component,
Mahmoud Ghorbanzadeh
[Full-disclosure] [CVE-2013-5955] Cross-site scripting Vulnerability in the Pbbooking 2.4,
Mahmoud Ghorbanzadeh
[Full-disclosure] [CVE-2013-5954] Multiple Cross Site Request Forgery Vulnerabilities in OpenX 2.8.11,
Mahmoud Ghorbanzadeh
[Full-disclosure] [CVE-2013-5951] Multiple Cross Site Scripting Vulnerabilities in eXtplorer 2.1.3,
Mahmoud Ghorbanzadeh
[Full-disclosure] Reflected XSS Attacks XSS vulnerabilities in Webmin 1.670 (CVE-2014-0339),
William Costa
[Full-disclosure] [CVE-2013-5952] Multiple Cross Site Scripting Vulnerabilities in Freichat,
Mahmoud Ghorbanzadeh
[Full-disclosure] [CVE-2013-5953],
Mahmoud Ghorbanzadeh
[Full-disclosure] exploit for old rlpdaemon bug,
Nomen Nescio
[Full-disclosure] Few Hrs left Webcast Reminder: Garage4Hackers Ranchoddas Series 2 on Reverse Engineering,
Sandeep Kamble
[Full-disclosure] [ MDVSA-2014:062 ] webmin,
security
Re: [Full-disclosure] Bank of the West security contact?,
Kristian Erik Hermansen
[Full-disclosure] [ MDVSA-2014:063 ] x2goserver,
security
[Full-disclosure] [ MDVSA-2014:064 ] udisks,
security
[Full-disclosure] [SECURITY] [DSA 2880-1] python2.7 security update,
Moritz Muehlenhoff
[Full-disclosure] Emergency patch for ShadowIRCd versions 6.3+ and Elemental-IRCd 6.5+,
Sam Dodrill
[Full-disclosure] CEbot: disasm from your Twitter account,
Capstone Engine
[Full-disclosure] (CFP) LACSEC 2014: Cancun, Mexico. May 7-8, 2014 (EXTENDED DEADLINE),
Fernando Gont
[Full-disclosure] [Quantum Leap Advisory] #QLA140216 - VLC Reflected XSS vulnerability,
Francesco Perna
[Full-disclosure] McAfee Cloud SSO and McAfee Asset Manager vulns,
Brandon Perry
[Full-disclosure] All your PLC are belong to us (2),
scadastrangelove
[Full-disclosure] Kaspersky 14.0.0.4651 RegExp Remote Denial of Service PoC2,
[CXSEC]
[Full-disclosure] USSD Sender Hacktool 1.0,
AWeber Test
[Full-disclosure] Administrivia: The End,
John Cartwright
[FD] Monoprice Server-Side Cart Vulnerability,
Jason_Khanlar
Re: [FD] OT: Thanks to Fyodor,
Laskov Denis
Re: [FD] Android IMSI-Catcher Detector (AIMSICD),
SecUpwN
<Possible follow-ups>
Re: [FD] Android IMSI-Catcher Detector (AIMSICD),
†
Re: [FD] Master Lock random key code generation/distribution Fails,
Deviant Ollam
Re: [FD] OT: Thanks to Fyodor,
jajordan
[FD] [RT-SA-2014-002] rexx Recruitment: Cross-Site Scripting in User Registration,
RedTeam Pentesting GmbH
Re: [FD] Adventure with Stack Smashing Protector (SSP),
Robert Święcki
[FD] Angie's List Auth Bypass,
robert mccurdy
[FD] New Speakers at PHDays IV: How to Hack Gmail and WordPress and Spy through TV,
Alexander Lashkov
[FD] OT Crazy SAT encoding of md4 preimage,
Georgi Guninski
[FD] End-user exploitable local file inclusion vulnerability in Ajax Pagination (twitter Style) 1.1 (WordPress plugin),
Harry Metcalfe
[FD] XSS, CSRF and blind SQL injection in GD Star Rating 1.9.22 (WordPress plugin),
Harry Metcalfe
[FD] CSRF vulnerability in WP HTML Sitemap 1.2 (WordPress plugin),
Harry Metcalfe
[FD] Wireless Security Paper,
Dillon Korman
[FD] SEC Consult SA-20140328-0 :: Multiple vulnerabilities in Symantec LiveUpdate Administrator,
SEC Consult Vulnerability Lab
[FD] Wireless Drive v1.1.0 iOS - Multiple Web Vulnerabilities,
Vulnerability Lab
[FD] My Photo Wifi Share & Photo Server 1.1 iOS - Command Injection Vulnerability,
Vulnerability Lab
[FD] Lazybone Studios WiFi Music 1.0 iOS - Multiple Vulnerabilities,
Vulnerability Lab
[FD] FTP Drive + HTTP 1.0.4 iOS - Code Execution Vulnerability,
Vulnerability Lab
[FD] ePhone Disk v1.0.2 iOS - Multiple Web Vulnerabilities,
Vulnerability Lab
[FD] iStArtApp FileXChange v6.2 iOS - Multiple Vulnerabilities,
Vulnerability Lab
[FD] Dell SonicWall EMail Security 7.4.5 - Multiple Vulnerabilities (Bulletin),
Vulnerability Lab
[FD] New fixes for Siemens S7 1200 PLC: Time is compressing...,
scadastrangelove
[FD] Canon Printer Exposes WiFi Password,
Taylor Hornby
[FD] XSS and FPD vulnerabilities in Js-Multi-Hotel for WordPress,
MustLive
[FD] PoC: End-to-end correlation for Tor connections using an active timing attack,
Jann Horn
[FD] AlienVault 4.5.0 authenticated SQL injection,
Brandon Perry
[FD] Fwd: Multiple vulnerabilities in Ioncube loader-wizard,
Christian Mehlmauer
[FD] DAVOSET v.1.1.9,
MustLive
[FD] PhotoWIFI Lite v1.0 iOS - Multiple Web Vulnerabilities,
Vulnerability Lab
[FD] Vanctech File Commander 1.1 iOS - Multiple Vulnerabilities,
Vulnerability Lab
Mail converted by MHonArc