Mail Thread Index
- [FD] Fing v3.3.0 iOS - Persistent Mail Encoding Vulnerability,
Vulnerability Lab
- [FD] Vipps by DNB for Android - cryptographic vulnerabilities,
alendal
- [FD] Browser Security Tool: HTTPS Only 2.1 (Major Release, Open Source, Python),
David Leo
- [FD] Panda SM Manager iOS Application - MITM SSL Certificate Vulnerability,
David Coomber
- [FD] Shakacon 2016 CFP - July 11-14 / Hawaii,
Jonathan Brossard
- [FD] WAGO IO PLC 758-870, 750-849, 750-849 vulnerabilities,
Karn Ganeshen
- [FD] Schneider Electric Building Operation Automation Server Multiple Vulnerabilities,
Karn Ganeshen
- [FD] [REVIVE-SA-2016-001] Revive Adserver - Multiple vulnerabilities,
Matteo Beccati
- [FD] CVE Request: Fiyo CMS 2.0.6.1 - Multiple XSS Vulnerabilities,
Himanshu Mehta
- [FD] Vulnerabilities in Mobile Safari,
MustLive
- [FD] [CFP] EuskalHack (San Sebastian / Donostia) 2016,
Ryan Dewhurst
- [FD] Hacking Magento eCommerce For Fun And 17.000 USD,
Egidio Romano
- [FD] Executable installers are vulnerable^WEVIL (case 29): putty-0.66-installer.exe allowa arbitrary (remote) code execution WITH escalation of privilege,
Stefan Kanthak
- [FD] McAfee VirusScan Enterprise security restrictions bypass,
Agazzini Maurizio
- Re: [FD] Netgear GS105Ev2 - Multiple Vulnerabilities,
Nick Boyce
- [FD] Apple iOS v9.2.1 - Multiple PassCode Bypass Vulnerabilities (App Store Link, Buy Tones Link & Weather Channel Link),
Vulnerability Lab
- [FD] Windows Mail Find People DLL side loading vulnerability,
Securify B.V.
- [FD] LSE Leading Security Experts GmbH - LSE-2016-01-01 - Wordpress ProjectTheme - Multiple Vulnerabilities,
LSE-Advisories
- [FD] [CORE-2016-0003] - Samsung SW Update Tool MiTM,
CORE Advisories Team
- [FD] [CORE-2016-0004] - SAP Download Manager Password Weak Encryption,
CORE Advisories Team
- [FD] Advisory X41-2016-001: Memory Corruption Vulnerability in "libotr",
X41 D-Sec GmbH Advisories
- [FD] CVE-2016-2563 - PuTTY/PSCP <=0.66 buffer overflow - vuln-pscp-sink-sscanf,
oststrom (public)
- [FD] New Security Tool: MrLooquer - IPv6 Intelligence,
Rafa Sanchez
- [FD] Thomson TWG850 Wireless Router Multiple Vulnerabilities,
Sebastian Perez
- [FD] Security contact @ Gigabyte,
Gustavo Sorondo
- [FD] Open Vulnerablity ID tracker instead of CVE. Maybe,
op7ic \x00
- [FD] Executable installers are vulnerable^WEVIL (case 30): clamwin-0.99-setup.exe allows arbitrary (remote) code execution WITH escalation of privilege,
Stefan Kanthak
- [FD] Executable installers are vulnerable^WEVIL (case 31): MalwareBytes' installers allows arbitrary (remote) code execution WITH escalation of privilege,
Stefan Kanthak
- [FD] [SE-2012-01] Broken security fix in Oracle Java SE 7/8/9,
Security Explorations
- [FD] Exim < 4.86.2 Local Root Privilege Escalation,
Dawid Golunski
- [FD] Kaltura Community Edition Multiple Vulnerabilities,
Daniel Jensen
- [FD] Netgear ReadyNAS Surveillance: Unauthenticated Remote Command Execution,
Sysdream Labs
- [FD] Wordpress Configuration Error on XDA-Developers.com led to full Web-Server Access and shut down website,
Steffen Rogge
- [FD] Microsoft Edge CDOMTextNode::get_data type confusion,
Berend-Jan Wever
- [FD] Chamlio LMS v1.10.2 - (Profile) Persistent Web Vulnerability,
Vulnerability Lab
- [FD] ChitaSoft (Web-Application) - SQL Injection Vulnerability,
Vulnerability Lab
- [FD] Yahoo Bug Bounty #37 - Sender Spoofing Vulnerability,
Vulnerability Lab
- [FD] Releasing Mobile Security Framework (MobSF) v0.9,
Ajin Abraham
- [FD] CVE-2016-3115 - OpenSSH <=7.2p1 xauth injection,
INTREST SEC
- [FD] CVE-2016-3116 - Dropbear SSH xauth injection,
INTREST SEC
- [FD] Netgear CG3000 modem/router set password vulnerability,
paul . szabo
- [FD] Latest Tegile security updates include tomcat examples package containing many security flaws.,
Jesse Jacobs
- [FD] [CFP] BSides Las Vegas,
Genevieve Southwick
- [FD] NEW VMSA-2016-0003 - VMware vRealize Automation and vRealize Business Advanced and Enterprise address Cross-Site Scripting (XSS) issues,
VMware Security Response Center
- [FD] [CORE-2016-0005] - FreeBSD Kernel amd64_set_ldt Heap Overflow,
CORE Advisories Team
- [FD] OWASP AppSec USA 2016 Call for Papers Released,
Weidenhamer, Andrew
- [FD] Zenphoto 1.4.11: RFI,
Curesec Research Team (CRT)
- [FD] PivotX 2.3.11: Reflected XSS,
Curesec Research Team (CRT)
- [FD] PivotX 2.3.11: Directory Traversal,
Curesec Research Team (CRT)
- [FD] PivotX 2.3.11: Code Execution,
Curesec Research Team (CRT)
- [FD] BigTree 4.2.8: Object Injection & Improper Filename Sanitation,
Curesec Research Team (CRT)
- [FD] Defense in depth -- the Microsoft way (part 39): vulnerabilities, please meet the bar for security servicing,
Stefan Kanthak
- [FD] WordPress Bulletproof Security Plugin Multiple Cross Site Scripting Vulnerabilities,
Sachin Wagh
- [FD] server and client side remote code execution through a buffer overflow in all git versions before 2.7.1 (unpublished ᴄᴠᴇ-2016-2324 and ᴄᴠᴇ‑2016‑2315),
Laël Cellier
- [FD] New Security Tool: Enteletaor - Broker & MQ Injection tool,
cr0hn
- [FD] FortiOS (Fortinet) - Open Redirect and Cross Site Scripting,
Javier Nieto
- [FD] AsusTEK asio.sys unsafe operation,
0x3d5157636b525761 iddqd
- [FD] Netgear DGNv2200 multiple vulnerabilities (Bezeq firmware),
0x3d5157636b525761 iddqd
- [FD] DORG - Disc Organization System SQL Injection And Cross Site Scripting,
SECUPENT Research Center
- [FD] A novel persistent injection to Windows machines,
0x3d5157636b525761 iddqd
- [FD] Achievo Cross Site Scripting vulnerability,
SECUPENT Research Center
- [FD] [RT-SA-2016-002] Cross-site Scripting in Securimage 3.6.2,
RedTeam Pentesting GmbH
- [FD] Executable installers are vulnerable^WEVIL (case 32): Comodo's installers allow arbitrary (remote) code execution WITH escalation of privilege,
Stefan Kanthak
- [FD] HTTPS Only 3.1 (Detailed Analysis, Browser Security, Open Source, Python),
David Leo
- [FD] Remote Code Execution in DVR affecting over 70 different vendors,
rotem kerner
- [FD] Facebook Messenger (iOS) Certificate Validation Vulnerability,
Sean Wright
- [FD] APPLE-SA-2016-03-21-1 iOS 9.3,
Apple Product Security
- [FD] APPLE-SA-2016-03-21-2 watchOS 2.2,
Apple Product Security
- [FD] APPLE-SA-2016-03-21-3 tvOS 9.2,
Apple Product Security
- [FD] APPLE-SA-2016-03-21-4 Xcode 7.3,
Apple Product Security
- [FD] APPLE-SA-2016-03-21-5 OS X El Capitan 10.11.4 and Security Update 2016-002,
Apple Product Security
- [FD] APPLE-SA-2016-03-21-6 Safari 9.1,
Apple Product Security
- [FD] APPLE-SA-2016-03-21-7 OS X Server 5.1,
Apple Product Security
- [FD] PayPal Bug Bounty #121 - (Profile) Filter Bypass & Persistent Web Vulnerability,
Vulnerability Lab
- [FD] Patron Info System - SQL Injection Vulnerability,
Vulnerability Lab
- [FD] Hi Technology & Services CMS - SQL Injection Vulnerabilities,
Vulnerability Lab
- [FD] WP External Links v1.80 - Cross Site Scripting Web Vulnerabilities,
Vulnerability Lab
- [FD] Docker UI v0.10.0 - Multiple Client Side Cross Site Request Forgery Web Vulnerabilities,
Vulnerability Lab
- [FD] Docker UI v0.10.0 - Multiple Persistent Vulnerabilities,
Vulnerability Lab
- [FD] Cades (2016Q1) - (id) Multiple SQL Injection Vulnerabilities,
Vulnerability Lab
- [FD] Dorsa Web CMS - Multiple SQL Injection Vulnerabilities,
Vulnerability Lab
- [FD] Trend Micro (SSO) - (Backend) SSO Redirect & Session Vulnerability,
Vulnerability Lab
- [FD] Python v2.7 v1.5.4 iOS - Filter Bypass & Persistent Vulnerability,
Vulnerability Lab
Mail converted by MHonArc