Mail Index

• Thread Index

• [FD] Multilaser Router - Access Control Bypass through Header Manipulation - CVE-2023-38944
  • From: Vinícius Moraes
• [FD] Multilaser Router - Access Control Bypass through URL Manipulation - CVE-2023-38945
  • From: Vinícius Moraes
• [FD] Multilaser Router - Access Control Bypass through Cookie Manipulation - CVE-2023-38946
  • From: Vinícius Moraes
• [FD] BACKDOOR.WIN32.ARMAGEDDON.R / Hardcoded Cleartext Credentials
  • From: malvuln
• [FD] BACKDOOR.WIN32.AUTOSPY.10 / Unauthenticated Remote Command Execution
  • From: malvuln
• [FD] Backdoor.Win32.Jeemp.c / Cleartext Hardcoded Credentials
  • From: malvuln
• [FD] BACKDOOR.WIN32.AGENT.AMT / Authentication Bypass
  • From: malvuln
• [FD] XAMPP 5.6.40 - Error Based SQL Injection
  • From: Andrey Stoykov
• [FD] Multiple XSS Issues in boidcmsv2.0.1
  • From: Andrey Stoykov
• [FD] JetStream Smart Switch - TL-SG2210P v5.0/ Improper Access Control / CVE-2023-43318
  • From: Shaikh Shahnawaz
• [FD] SEC Consult SA-20240226-0 :: Local Privilege Escalation via DLL Hijacking in Qognify VMS Client Viewer
  • From: SEC Consult Vulnerability Lab, Research via Fulldisclosure
• [FD] KL-001-2024-001: Artica Proxy Unauthenticated LFI Protection Bypass Vulnerability
  • From: KoreLogic Disclosures via Fulldisclosure
• [FD] KL-001-2024-002: Artica Proxy Unauthenticated PHP Deserialization Vulnerability
  • From: KoreLogic Disclosures via Fulldisclosure
• [FD] KL-001-2024-003: Artica Proxy Unauthenticated File Manager Vulnerability
  • From: KoreLogic Disclosures via Fulldisclosure
• [FD] KL-001-2024-004: Artica Proxy Loopback Services Remotely Accessible Unauthenticated
  • From: KoreLogic Disclosures via Fulldisclosure
• [FD] [Full Disclosure] CVE-2024-25228: Unpatched Command Injection in Vinchin Backup & Recovery Versions 7.2 and Earlier
  • From: Valentin Lobstein via Fulldisclosure
• [FD] StimulusReflex CVE-2024-28121
  • From: lixts via Fulldisclosure
• [FD] Backdoor.Win32.Beastdoor.oq / Unauthenticated Remote Command Execution
  • From: malvuln
• [FD] APPLE-SA-03-05-2024-1 iOS 17.4 and iPadOS 17.4
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-05-2024-2 iOS 16.7.6 and iPadOS 16.7.6
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-07-2024-1 Safari 17.4
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-07-2024-2 macOS Sonoma 14.4
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-07-2024-3 macOS Ventura 13.6.5
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-07-2024-4 macOS Monterey 12.7.4
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-07-2024-5 watchOS 10.4
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-07-2024-6 tvOS 17.4
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-07-2024-7 visionOS 1.1
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-12-2024-1 GarageBand 10.4.11
  • From: Apple Product Security via Fulldisclosure
• [FD] HNS-2024-05 - HN Security Advisory - Multiple vulnerabilities in RT-Thread RTOS
  • From: Marco Ivaldi
• [FD] SEC Consult SA-20240307-0 :: Local Privilege Escalation via writable files in Checkmk Agent (CVE-2024-0670)
  • From: SEC Consult Vulnerability Lab, Research via Fulldisclosure
• [FD] MetaFox Remote Shell Upload Exploit
  • From: j0ck1ng@tempr.email
• [FD] Backdoor.Win32.Emegrab.b / Remote Stack Buffer Overflow (SEH)
  • From: malvuln
• [FD] [IWCC 2024] CfP: 13th International Workshop on Cyber Crime - Vienna, Austria, July 30 - Aug 02, 2024
  • From: Artur Janicki via Fulldisclosure
• [FD] Circontrol EV Charger vulnerabilities (CVE-2020-8006, CVE-2020-8007)
  • From: Dariusz G
• [FD] Win32.STOP.Ransomware (smokeloader) / Remote Code Execution (MITM)
  • From: malvuln
• [FD] Escape sequence injection in util-linux wall (CVE-2024-28085)
  • From: Skyler Ferrante (RIT Student) via Fulldisclosure
• [FD] APPLE-SA-03-25-2024-6 visionOS 1.1.1
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-25-2024-5 iOS 16.7.7 and iPadOS 16.7.7
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-25-2024-4 iOS 17.4.1 and iPadOS 17.4.1
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-25-2024-3 macOS Ventura 13.6.6
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-25-2024-2 macOS Sonoma 14.4.1
  • From: Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-25-2024-1 Safari 17.4.1
  • From: Apple Product Security via Fulldisclosure
• [FD] Application is Vulnerable to Session Fixation
  • From: YOGESH BHANDAGE
• [FD] Intel PowerGadget 3.6 Local Privilege Escalation
  • From: Julian Horoszkiewicz via Fulldisclosure