Mail Index
- [FD] CVE-2016-3078: php: integer overflow in ZipArchive::getFrom*
- From: Hans Jerry Illikainen
- [FD] CONFidence - May, 19-20th, Krakow - join the biggest hacker meeting in Poland!
- [FD] Mozilla doesn't care for upstream security fixes, and doesn't bother to send own security fixes upstream
- [FD] New BlackArch Linux ISOs (2016.04.28) and Installer released
- [FD] Garage4hackers Ranchoddas Webcast Series CTF Challenge
- [FD] Observium Commercial - CSRF & Authenticated Code Execution
- [FD] real dangers of gsm setups
- [FD] Moxa MiiNePort - Multiple Vulnerabilities
- [FD] Mobile Security Framework (MobSF) v0.9.2 Released
- [FD] CVE-2016-4338: Zabbix Agent 3.0.1 mysql.size shell command injection
- From: Timo Juhani Lindfors
- [FD] CVE-2016-3627 CVE-2016-3705: libxml2: stack overflow in xml validator (parser)
- [FD] LSE Leading Security Experts GmbH - LSE-2016-02-03 - OXID eShop Path Traversal Vulnerability
- [FD] APPLE-SA-2016-05-03-1 Xcode 7.3.1
- From: Apple Product Security
- [FD] NetCommWireless HSPA 3G10WVE Wireless Router – Multiple vulnerabilities
- [FD] Swagger Editor v2.9.9 "description" Key DOM-based Cross-Site Scripting
- [FD] CVE-2016-2784: CMS Made Simple < 2.1.3 & < 1.12.2 Web server Cache Poisoning
- [FD] CVE Request for ManageEngine Applications Manager Build No: 12700 Information Disclosure and Un-Authenticated SQL injection.
- [FD] Give a warm welcome to Faraday v1.0.19! New GTK interface, Custom Reports & Bug fixing
- Re: [FD] NetCommWireless HSPA 3G10WVE Wireless Router – Multiple vulnerabilities
- [FD] Aruba ArubaOS/Aruba Instant/AirWave Management - Multiple Vulnerabilities (CVE-2016-2031, CVE-2016-2032)
- Re: [FD] CVE Request for ManageEngine Applications Manager Build No: 12700 Information Disclosure and Un-Authenticated SQL injection.
- [FD] WheresMyDroid Android App issues
- From: 0x3d5157636b525761 iddqd
- [FD] t2'16: Call For Papers 2016 (Helsinki, Finland)
- [FD] Skype Manager - (Email Change) Filter Bypass Vulnerability
- [FD] Notes v4.5 iOS - Arbitrary File Upload Vulnerability
- [FD] Wordpress Truemag Theme - Client Side Cross Site Scripting Web Vulnerability
- [FD] Trend Micro Direct Pass - Filter Bypass & Cross Site Scripting Vulnerability
- [FD] Stanford University - Multiple SQL Injection Vulnerabilities
- [FD] Nfdump Nfcapd 1.6.14 Multiple Vulnerabilities
- [FD] Intuit QuickBooks 2007 - 2016 Arbitrary Code Execution
- From: Thegrideon Software
- [FD] CFP: Passwords 2016, Ruhr-University Bochum, Germany, Dec 5-7
- [FD] BulletProof Security 53.3 - Security Advisory - Multiple XSS Vulnerabilities
- [FD] Skype Phishing Attack
- [FD] CakePHP Framework <= 3.2.4 IP Spoofing Vulnerability
- [FD] Huawei Mobile Broadband HL Service Local Privilege Escalation
- [FD] Webshell for IIS
- Re: [FD] Skype Phishing Attack
- Re: [FD] Skype Phishing Attack
- [FD] runAV mod_security Remote Command Execution
- [FD] [ERPSCAN-16-008] SAP NetWeaver AS JAVA - XSS vulnerability in ProxyServer servlet
- [FD] [ERPSCAN-16-009] SAP xMII - directory traversal vulnerability
- [FD] APPLE-SA-2016-05-16-1 tvOS 9.2.1
- From: Apple Product Security
- [FD] APPLE-SA-2016-05-16-2 iOS 9.3.2
- From: Apple Product Security
- [FD] APPLE-SA-2016-05-16-3 watchOS 2.2.1
- From: Apple Product Security
- [FD] APPLE-SA-2016-05-16-4 OS X El Capitan 10.11.5 and Security Update 2016-003
- From: Apple Product Security
- [FD] APPLE-SA-2016-05-16-5 Safari 9.1.1
- From: Apple Product Security
- [FD] APPLE-SA-2016-05-16-6 iTunes 12.4
- From: Apple Product Security
- Re: [FD] runAV mod_security Remote Command Execution
- Re: [FD] Skype Phishing Attack
- [FD] Code Execution Vulnerabilities In 7zip
- Re: [FD] Code Execution Vulnerabilities In 7zip
- [FD] OWTF 2.0a "Tikka Masala" released!
- [FD] [ICS] Meteocontrol WEB’log Multiple Vulnerabilities
- [FD] WSO2 SOA Enablement Server - Reflected Cross-Site Scripting
- Re: [FD] Skype Phishing Attack
- [FD] [ERPSCAN-16-010] SAP NetWeaver AS JAVA – information disclosure vulnerability
- [FD] [ERPSCAN-16-011] SAP NetWeaver AS JAVA – SQL injection vulnerability
- [FD] Linknat VOS2009/VOS3000 SQL injection
- [FD] Multiple Reflected XSS vulnerabilities in Infobae Website
- [FD] [RCESEC-2016-001] Postfix Admin v2.93 Generic POST Cross-Site Request Forgeries
- [FD] MediaLink router MWN-WAPR300N - Several Vulnerabilities
- [FD] poisoning / hijacking DNS locally of a third party domain: in shared and custom web hosting and in ISP, in automated /custom control panel software
- [FD] MSA-2016-01: PowerFolder Remote Code Execution Vulnerability
- From: Advisories Advisories
- [FD] Teampass v2.1.25 - Arbitrary File Download Vulnerability
- [FD] Teampass v2.1.25 - Unauthenticated Access Vulnerability
- [FD] Teampass v2.1.26 - Stored Cross Site Scripting Vulnerability
- [FD] Bugcrowd Bug Bounty #7 - Persistent Web Vulnerability
- [FD] Bashi v1.6 iOS - Persistent Mail Encoding Vulnerability
- [FD] [RCESEC-2016-002] XenAPI v1.4.1 for XenForo Multiple Unauthenticated SQL Injections
- [FD] CVE-2016-4803 dotCMS - Email Header Injection
- Re: [FD] Teampass v2.1.26 - Stored Cross Site Scripting Vulnerability
- [FD] CVE-2015-3854 Battery permission leakage in Android
- Re: [FD] CVE-2015-3854 Battery permission leakage in Android
- Re: [FD] Teampass v2.1.26 - Stored Cross Site Scripting Vulnerability
- [FD] [RT-SA-2015-012] XML External Entity Expansion in Paessler PRTG Network Monitor
- From: RedTeam Pentesting GmbH
- [FD] [RT-SA-2016-004] Websockify: Remote Code Execution via Buffer Overflow
- From: RedTeam Pentesting GmbH
- [FD] [RT-SA-2016-005] Unauthenticated File Upload in Relay Ajax Directory Manager may Lead to Remote Command Execution
- From: RedTeam Pentesting GmbH
Mail converted by MHonArc