Mail Index

Thread Index

[FD] DualDesk v20 "Proxy.exe" Server / Denial Of Service - CVE-2018-7583
- From: hyp3rlinx
[FD] CVE-2018-7449 SEGGER embOS/IP FTP Server v3.22 / FTP CMDs Denial Of Service
- From: hyp3rlinx
[FD] Another TCP based IDS bypass technique. CVE-2018-6794
- From: Kirill Shipulin
[FD] CSRF vulnerabilities in D-Link DGS-3000-10TC
- From: MustLive
[FD] Content Injection in Samsung Display Solutions Application for Android [CVE-2018-6019]
- From: Nightwatch Cybersecurity Research
[FD] CVE-2017-12544 XSS on HPE System Management Homepage v7.6.0.11 and minor
- From: spinfoo via Fulldisclosure
[FD] KL-001-2018-007 : Sophos UTM 9 loginuser Privilege Escalation via confd Service
- From: KoreLogic Disclosures
[FD] KL-001-2018-007 : Sophos UTM 9 loginuser Privilege Escalation via confd Service
- From: KoreLogic Disclosures
[FD] Softros Network Time System Server v2.3.4 / Denial Of Service CVE-2018-7658
- From: hyp3rlinx
[FD] DefenseCode Security Advisory: Magento Backups Cross-Site Request Forgery
- From: Defense Code
[FD] DefenseCode Security Advisory: Magento Multiple Stored Cross-Site Scripting Vulnerabilities
- From: Defense Code
[FD] DefenseCode Security Advisory: Magento Stored Cross-Site Scripting – Downloadable Products
- From: Defense Code
[FD] DefenseCode Security Advisory: Magento Stored Cross-Site Scripting – Product Attributes
- From: Defense Code
[FD] Rapid Scada - 5.5.0 - Insecure Permissions
- From: filipe
[FD] DSA-2018-038: RSA Archer GRC Platform Multiple Vulnerabilities
- From: EMC Product Security Response Center
[FD] DSA-2018-011: RSA Identity Governance and Lifecycle Privilege Escalation Vulnerability
- From: EMC Product Security Response Center
[FD] CVE-2017-12544 XSS on HPE System Management Homepage v7.6.0.11 and minor
- From: spinfoo via Fulldisclosure
[FD] [RT-SA-2018-001] Arbitrary Redirect in Tuleap
- From: RedTeam Pentesting GmbH
[FD] WebLog Expert Web Server Enterprise v9.4 / Authentication Bypass CVE-2018-7581
- From: hyp3rlinx
[FD] WebLog Expert Web Server Enterprise v9.4 / Remote Denial Of Service CVE-2018-7582
- From: hyp3rlinx
[FD] Tuleap SQL Injection
- From: Cristiano Maruti
[FD] 10-Strike Network Monitor 5.4 - Unquoted Service Path
- From: filipe
[FD] BitDefender Total Security 2018 - Insecure Pipe Permissions
- From: filipe
[FD] Panda Global Security 17.0.1 - Unquoted service path
- From: filipe
[FD] Panda Global Security 17.0.1 - NULL DACL grants full access
- From: filipe
[FD] WPS Free Office 10.2.0.5978 - NULL DACL grants full access
- From: filipe
[FD] Hola VPN 1.79.859 - Insecure service permissions
- From: filipe
[FD] Multiple SQL injection vulnerabilities in Bacula-Web (CVE-2017-15367)
- From: Gustavo Sorondo
[FD] DSA-2018-020: Dell EMC Data Protection Advisor Hardcoded Password Vulnerability
- From: EMC Product Security Response Center
[FD] SEC Consult SA-20180312-0 :: Multiple Critical Vulnerabilities in SecurEnvoy SecurMail
- From: SEC Consult Vulnerability Lab
[FD] [RT-SA-2017-012] Shopware Cart Accessible by Third-Party Websites
- From: RedTeam Pentesting GmbH
[FD] PayPal Inc - New Venmo Bug Bounty Program
- From: Vulnerability Lab
[FD] PayPal Inc Increases Bug Bounty Payments in 2018 up to 30.000$
- From: Vulnerability Lab
Re: [FD] BitDefender Total Security 2018 - Insecure Pipe Permissions
- From: Alex BALAN
[FD] SQL Injection in Textpattern <= 4.6.2
- From: Manuel Garcia Cardenas
[FD] DEWESoft X3 SP1 (64-bit) installer / Remote Internal Command Access - CVE-2018-7756
- From: hyp3rlinx
[FD] hardwear.io CFP is Open & New Security Training in Berlin!
- From: Yuliya Pliavaka
[FD] SEC Consult SA-20180314-0 :: Arbitrary Shortcode Execution & Local File Inclusion in WooCommerce Products Filter (PluginUs.Net)
- From: SEC Consult Vulnerability Lab
[FD] [CORE-2018-0003] MikroTik RouterOS SMB Buffer Overflow
- From: Core Security Advisories Team
[FD] [CVE-2018-5233] Grav CMS admin plugin Reflected Cross Site Scripting (XSS) vulnerability
- From: Sydream Labs
[FD] [CVE-2018-7422] Local File Inclusion (LFI) vulnerability in WordPress Site Editor Plugin
- From: nicolas.buzy-debat
[FD] c0c0n XI | The cy0ps c0n - Call For Papers & Call For Workshops 2018 Open
- From: Prajwal Panchmahalkar
[FD] RedCoded ISR: Abine Blur Password Manager Insecure Permissions (CVE-2018-8213)
- From: (RS) Tyler Schroder
[FD] DSA-2018-037: Dell EMC NetWorker Buffer Overflow Vulnerability
- From: EMC Product Security Response Center
[FD] New release: UFONet v1.0 "TachY0n!"
- From: psy
[FD] LDAP Account Manager (6.2) CVE-2018-8763, CVE-2018-8764
- From: Michał Kędzior
[FD] Kaseya AgentMon.exe <= 9.3.0.11 - Local Privilege Escalation
- From: x ksi
[FD] Bomgar Remote Support Portal JavaStart Applet <= 52970 - Path Traversal
- From: x ksi
[FD] ModSecurity WAF 3.0 for Nginx - Denial of Service
- From: x ksi
[FD] ES2018-05 Kamailio heap overflow
- From: Sandro Gauci
[FD] DSA-2018-018: Dell EMC Isilon OneFS Multiple Vulnerabilities
- From: EMC Product Security Response Center
[FD] BSidesMilano Event and CFP
- From: Agostino Panico
[FD] Cross-Site Scripting vulnerability in Zimbra Collaboration Suite due to the way it handles attachment links
- From: Securify B.V. via Fulldisclosure
[FD] AEF CMS v1.0.9 - (PM) Persistent Cross Site Scripting Vulnerability
- From: Vulnerability Lab
[FD] Weblication CMS Core & Grid v12.6.24 - Multiple Cross Site Scripting Vulnerabilities
- From: Vulnerability Lab
[FD] Sandoba CP:Shop CMS v2016.1 - Multiple Cross Site Scripting Vulnerabilities
- From: Vulnerability Lab
[FD] Microsoft Skype Mobile v81.2 & v8.13 - Remote Denial of Service Vulnerability
- From: Vulnerability Lab
[FD] Blind SQL Injection in Square 9 GlobalForms <= 6.2.x (CVE-2018-8820)
- From: Hate Shape
[FD] ManageEngine Service Desk Plus < 9403 Cross-Site Scripting
- From: okan coskun
[FD] DSA-2018-058: Dell EMC ScaleIO Multiple Security Vulnerabilities
- From: EMC Product Security Response Center
[FD] DSA-2018-040: RSA® Authentication Agent for Web for IIS and Apache Web Server Multiple Vulnerabilities
- From: EMC Product Security Response Center
[FD] new email; gw22067@xxxxxxxxxxx | Double-free segfault bypass
- From: keliikoa kirland
Re: [FD] new email; gw22067@xxxxxxxxxxx | Double-free segfault bypass
- From: keliikoa kirland
Re: [FD] new email; gw22067@xxxxxxxxxxx | Double-free segfault bypass
- From: keliikoa kirland
[FD] CA20180329-01: Security Notice for CA Workload Automation AE and CA Workload Control Center
- From: Williams, Ken
[FD] CA20180328-01: Security Notice for CA API Developer Portal
- From: Kotas, Kevin J
[FD] CVE-2018-5708
- From: Kevin R
[FD] Multiple Cross-Site Scripting Vulnerabilities in Crea8Social Social Network Script
- From: Mohamed A. Baset
[FD] APPLE-SA-2018-3-29-1 iOS 11.3
- From: Apple Product Security
[FD] APPLE-SA-2018-3-29-2 watchOS 4.3
- From: Apple Product Security
[FD] APPLE-SA-2018-3-29-3 tvOS 11.3
- From: Apple Product Security
[FD] APPLE-SA-2018-3-29-4 Xcode 9.3
- From: Apple Product Security
[FD] APPLE-SA-2018-3-29-5 macOS High Sierra 10.13.4, Security Update 2018-002 Sierra, and Security Update 2018-002 El Capitan
- From: Apple Product Security
[FD] APPLE-SA-2018-3-29-6 Safari 11.1
- From: Apple Product Security
[FD] APPLE-SA-2018-3-29-7 iTunes 12.7.4 for Windows
- From: Apple Product Security
[FD] APPLE-SA-2018-3-29-8 iCloud for Windows 7.4
- From: Apple Product Security
[FD] Null Pointer Deference (Denial of Service)-Kingsoft Internet Security 9+ Kernel Driver KWatch3.sys
- From: WTS Research Team
Re: [FD] new email; gw22067@xxxxxxxxxxx | Double-free segfault bypass
- From: Matthew Fernandez

Mail converted by MHonArc