Bugtraq: by date
RSS Feed
About List
All Lists
Previous period
65 messages
starting Oct 01 18 and
ending Oct 31 18
Date index |
Thread index |
Author index
Monday, 01 October
[SYSS-2018-014] Bestwebsoft PDF & Print - Cross-Site Scripting Robin . Trost
WebKitGTK+ and WPE WebKit Security Advisory WSA-2018-0007 Michael Catanzaro
[SECURITY] [DSA 4307-1] python3.5 security update Moritz Muehlenhoff
e2 Security GmbH Advisory 2018-01: MensaMax Android app / Unencrypted transmission and usage of hardcoded encryption key Stefan Pietsch
[SECURITY] [DSA 4308-1] linux security update Salvatore Bonaccorso
Stored credentials Ivanti Workspace Control can be retrieved from Registry Securify B.V.
Ivanti Workspace Control Application Whitelist bypass via PowerGrid /RWS command line argument Securify B.V.
Ivanti Workspace Control local privilege escalation via Named Pipe Securify B.V.
Ivanti Workspace Control Application Whitelist bypass via PowerGrid /SEE command line argument Securify B.V.
SEC Consult SA-20181001-0 :: Password disclosure vulnerability & XSS in PTC ThingWorx (CVE-2018-17216, CVE-2018-17217, CVE-2018-17218) SEC Consult Vulnerability Lab
Ivanti Workspace Control Data Security bypass via localhost UNC path Securify B.V.
Tuesday, 02 October
[SECURITY] [DSA 4309-1] strongswan security update Yves-Alexis Perez
[SYSS-2018-023] Password leakage in Verint Verba Collaboration Compliance and Quality Management Platform (CVE-2018-17871) Micha Borrmann
[SYSS-2018-024] Privilege Escalation in Verint Verba Collaboration Compliance and Quality Management Platform (CVE-2018-17872) Micha Borrmann
Wednesday, 03 October
[slackware-security] mozilla-firefox (SSA:2018-276-01) Slackware Security Team
[SECURITY] [DSA 4310-1] firefox-esr security update Salvatore Bonaccorso
Pie Register v3.0.15 (WordPress Plugin) - Cross-Site Scripting Vulnerability in Login Socket_0x03
Sunday, 07 October
[CVE-2018-11797] DoS vulnerability in Apache PDFBox parser Andreas Lehmkuehler
[SECURITY] [DSA 4311-1] git security update Salvatore Bonaccorso
[UPDATE][CVE-2018-11797] DoS vulnerability in Apache PDFBox parser Andreas Lehmkuehler
Tuesday, 09 October
[SECURITY] [DSA 4312-1] tinc security update Salvatore Bonaccorso
APPLE-SA-2018-10-08-1 iOS 12.0.1 Apple Product Security
APPLE-SA-2018-10-08-2 iCloud for Windows 7.7 Apple Product Security
[SECURITY] [DSA 4313-1] linux security update Salvatore Bonaccorso
CVE Request: Sitepress Multilingual CMS Plugin Unauthenticated Stored XSS Rahul Pratap Singh
Responsive Filemanager 9.8.1 Authentication Bypass yavuz atlas
Responsive Filemanager 9.8.1 Reflected Cross Site Scripting (XSS) yavuz atlas
SEC Consult SA-20181009-0 :: Remote Code Execution via XMeye P2P Cloud in Xiongmai IP Cameras, NVRs and DVRs incl. 3rd party OEM devices (CVE-2018-17915, CVE-2018-17917, CVE-2018-17919) SEC Consult Vulnerability Lab
Tuesday, 23 October
Pie Register v3.0.17 (WordPress Plugin) - XSS Vulnerability in Forgot-Password Socket_0x03
Zoho ManageEngine OpManager 12.3 allows Unrestricted Arbitrary File Upload Murat Aydemir
SATE VI - Call for Participation Delaitre, Aurelien (IntlAssoc)
Question Answer v1.2.30 (WordPress Plugin) - Multiple XSS Vulnerabilities Socket_0x03
[SYSS-2018-026] missing X.509 validation with AudioCodes IP Phones (Skype for Business, on-premise) - CVE-2018-18567 Micha Borrmann
[SYSS-2018-028] information leakage with Polycom VVX Phones (Skype for Business, on-premise) - CVE-2018-18566 Micha Borrmann
CA20181017-01: Security Notice for CA Identity Governance Kotas, Kevin J
[slackware-security] mozilla-firefox (SSA:2018-296-01) Slackware Security Team
[SYSS-2018-027] missing X.509 validation with Polycom VVX Phones (Skype for Business, on-premise) - CVE-2018-18568 Micha Borrmann
[security bulletin] MFSBGN03827 rev.1 - Microfocus Real User Monitoring 9.4.0 BPRDownload Java Deserialization Vulnerability cyber-psrt
Wednesday, 24 October
[SECURITY] [DSA 4324-1] firefox-esr security update Moritz Muehlenhoff
Thursday, 25 October
[SECURITY] [DSA 4325-1] mosquitto security update Sebastien Delafond
[SECURITY] [DSA 4326-1] openjdk-8 Moritz Muehlenhoff
[SECURITY] [DSA 4327-1] thunderbird security update Moritz Muehlenhoff
[SECURITY] [DSA 4328-1] xorg-server security update Moritz Muehlenhoff
Monday, 29 October
[CORE-2018-0005] - ASRock Drivers Elevation of Privilege Vulnerabilities SecureAuth Advisories Team
[SECURITY] [DSA 4321-2] graphicsmagick update Moritz Muehlenhoff
[SECURITY] [DSA 4329-1] teeworlds security update Moritz Muehlenhoff
Wednesday, 31 October
APPLE-SA-2018-10-30-1 iOS 12.1 Apple Product Security
APPLE-SA-2018-10-30-3 Safari 12.0.1 Apple Product Security
APPLE-SA-2018-10-30-4 watchOS 5.1 Apple Product Security
APPLE-SA-2018-10-30-5 tvOS 12.1 Apple Product Security
APPLE-SA-2018-10-30-10 Additional information for APPLE-SA-2018-9-24-5 watchOS 5 Apple Product Security
APPLE-SA-2018-10-30-6 iTunes 12.9.1 Apple Product Security
APPLE-SA-2018-10-30-11 Additional information for APPLE-SA-2018-9-24-6 tvOS 12 Apple Product Security
APPLE-SA-2018-10-30-2 macOS Mojave 10.14.1, Security Update 2018-001 High Sierra, Security Update 2018-005 Sierra Apple Product Security
APPLE-SA-2018-10-30-8 Additional information for APPLE-SA-2018-9-24-4 iOS 12 Apple Product Security
APPLE-SA-2018-10-30-13 Additional information for APPLE-SA-2018-9-24-2 iTunes 12.9 for Windows Apple Product Security
APPLE-SA-2018-10-30-7 iCloud for Windows 7.8 Apple Product Security
APPLE-SA-2018-10-30-14 Additional information for APPLE-SA-2018-7-9-4 macOS High Sierra 10.13.6, Security Update 2018-004 Sierra, Security Update 2018-004 El Capitan Apple Product Security
APPLE-SA-2018-10-30-9 Additional information for APPLE-SA-2018-9-24-1 macOS Mojave 10.14 Apple Product Security
APPLE-SA-2018-10-30-12 Additional information APPLE-SA-2018-10-08-2 iCloud for Windows 7.7 Apple Product Security
Zoho ManageEngine OpManager 12.3 allows Stored XSS Hakan Bayır
Zoho ManageEngine OpManager 12.3 allows Self XSS Vulnerability Hakan Bayır
OpenText Brava! Enterprise and Brava! Server Components Sensitive Data Exposure luke . bailiff
October 2018 Sourcetree Advisory Anton Black
[slackware-security] curl (SSA:2018-304-01) Slackware Security Team