Full Disclosure: by author
RSS Feed
About List
All Lists
Previous period
273 messages
starting Feb 24 14 and
ending Feb 20 14
Date index |
Thread index |
Author index
0u7 5m4r7
Freepbx 2.x , Command Execution vuln 0u7 5m4r7 (Feb 24)
Freepbx , php code execution exploit 0u7 5m4r7 (Feb 11)
Aaron Zauner
Critical security flaws in Nagios NRPE client/server crypto Aaron Zauner (Feb 14)
advisories
CVE-2014-1214 - Remote Code Execution in Projoom NovaSFH Plugin advisories (Feb 07)
CVE-2014-1213 - Denial of Service in Sophos Anti Virus advisories (Feb 02)
Andrew Horton
Bypass the Stop User Enumeration WordPress Plugin Andrew Horton (Feb 02)
Andrew Nacin
Re: DoS via tables corruption in WordPress Andrew Nacin (Feb 11)
Aris Adamantiadis
Re: DoS via tables corruption in WordPress Aris Adamantiadis (Feb 12)
Re: DoS via tables corruption in WordPress Aris Adamantiadis (Feb 10)
Re: DoS via tables corruption in WordPress Aris Adamantiadis (Feb 11)
Benji
Re: Hacking in Schools Benji (Feb 25)
Re: Ektron CMS TakeOver Part (2) - PaylPal-Forward.com demonstration Benji (Feb 05)
Brandon Perry
CVE-2012-2627 not *really* fixed Brandon Perry (Feb 14)
Re: Hacking in Schools Brandon Perry (Feb 25)
CVE-2014-1610 description incorrect Brandon Perry (Feb 02)
Barracuda Load Balancer Remote Authenticated Root Brandon Perry (Feb 12)
BSidesLV Info
[Call for Papers] (And Call for Mentors) Proving Ground Speaker Development Program BSidesLV Info (Feb 11)
cfp2014
Recon 2014 Call For Papers - June 27-29, 2014 - Montreal, Quebec cfp2014 (Feb 17)
chris.payne
GrrCON 2014 CFP chris.payne (Feb 19)
Cisco Systems Product Security Incident Response Team
Cisco Security Advisory: Cisco Firewall Services Module Cut-Through Proxy Denial of Service Vulnerability Cisco Systems Product Security Incident Response Team (Feb 19)
Cisco Security Advisory: Multiple Vulnerabilities in Cisco IPS Software Cisco Systems Product Security Incident Response Team (Feb 19)
Cisco Security Advisory: Unauthorized Access Vulnerability in Cisco Unified SIP Phone 3905 Cisco Systems Product Security Incident Response Team (Feb 19)
Cisco Security Advisory: Cisco UCS Director Default Credentials Vulnerability Cisco Systems Product Security Incident Response Team (Feb 19)
Cisco Security Advisory: Cisco Prime Infrastructure Command Execution Vulnerability Cisco Systems Product Security Incident Response Team (Feb 26)
CORE Advisories Team
CORE-2014-0001 - Publish-It Buffer Overflow Vulnerability CORE Advisories Team (Feb 05)
Dan Ballance
Re: Hacking in Schools Dan Ballance (Feb 26)
Daniel Wood
Re: Bank of the West security contact? Daniel Wood (Feb 08)
doxingtheidiots
Re: Fwd: Re: Bank of the West security contact? doxingtheidiots (Feb 09)
Egidio Romano
Re: [CVE-2014-1860] PHP object insertion / possible RCE in Contao CMS <= 3.2.4 Egidio Romano (Feb 07)
Re: [CVE-2014-1860] PHP object insertion / possible RCE in Contao CMS <= 3.2.4 Egidio Romano (Feb 09)
Re: [CVE-2014-1860] PHP object insertion / possible RCE in Contao CMS <= 3.2.4 Egidio Romano (Feb 06)
En.wooyun.org
[WooYun-2014-00049] Mac osx & ios Kernel Module Uninitialization En.wooyun.org (Feb 18)
Florian Weimer
[SECURITY] [DSA 2852-1] libgadu security update Florian Weimer (Feb 06)
[SECURITY] [DSA 2856-1] libcommons-fileupload-java security update Florian Weimer (Feb 07)
Gaurang Pandya
[OT] pls ignore Gaurang Pandya (Feb 20)
Georgi Guninski
OT 11.Feb.2014 declared 'The Day we Fight Back' against NSA et al Georgi Guninski (Feb 10)
Re: OT 11.Feb.2014 declared 'The Day we Fight Back' against NSA et al Georgi Guninski (Feb 10)
Re: MS 2k8 DNS server trivial DDoS contributor Georgi Guninski (Feb 25)
Re: OT 11.Feb.2014 declared 'The Day we Fight Back' against NSA et al Georgi Guninski (Feb 10)
Gregory Pickett
pMap v1.10 Gregory Pickett (Feb 04)
Gynvael Coldwind
Re: [OT] pls ignore Gynvael Coldwind (Feb 24)
Hafez Kamal
[HITB-Announce] Haxpo CFP Hafez Kamal (Feb 19)
Harry Metcalfe
Re: A question for the list - WordPress plugin inspections Harry Metcalfe (Feb 20)
Re: A question for the list - WordPress plugin inspections Harry Metcalfe (Feb 19)
Re: DoS via tables corruption in WordPress Harry Metcalfe (Feb 10)
Re: DoS via tables corruption in WordPress Harry Metcalfe (Feb 12)
Re: DoS via tables corruption in WordPress Harry Metcalfe (Feb 17)
A question for the list - WordPress plugin inspections Harry Metcalfe (Feb 19)
Three vulnerabilities in BP Group Documents 1.2.1 (WordPress plugin) Harry Metcalfe (Feb 18)
Directory traversal in NextGEN Gallery 2.0.0 (WordPress plugin) Harry Metcalfe (Feb 18)
Harry Sintonen
ASUS router drive-by code execution via XSS and authentication bypass Harry Sintonen (Feb 22)
Henri Salo
Re: A question for the list - WordPress plugin inspections Henri Salo (Feb 20)
Hinky Dink
Re: Hacking in Schools Hinky Dink (Feb 25)
Horton, Andrew (AU Melbourne)
Multiple vulnerabilities in NETGEAR N300 WIRELESS ADSL2+ MODEM ROUTER DGN2200 Horton, Andrew (AU Melbourne) (Feb 12)
ICSS Security
Re: RC Trojan 1.1d (Undetected) ICSS Security (Feb 20)
RC Trojan 1.1d (Undetected) ICSS Security (Feb 19)
imipak
Apple SSL fail imipak (Feb 22)
ISecAuditors Security Advisories
[ISecAuditors Security Advisories] Multiple reflected XSS vulnerabilities in Atmail WebMail ISecAuditors Security Advisories (Feb 06)
[ISecAuditors Security Advisories] - Reflected XSS vulnerability in Boxcryptor (www.boxcryptor.com) ISecAuditors Security Advisories (Feb 14)
Jann Horn
Re: Bank of the West security contact? Jann Horn (Feb 08)
Jeffrey Walton
Re: Bank of the West security contact? Jeffrey Walton (Feb 08)
Re: Bank of the West security contact? Jeffrey Walton (Feb 08)
Re: Bank of the West security contact? Jeffrey Walton (Feb 08)
Re: Bank of the West security contact? Jeffrey Walton (Feb 08)
Re: Bank of the West security contact? Jeffrey Walton (Feb 08)
Re: Bank of the West security contact? Jeffrey Walton (Feb 08)
Re: Fwd: Re: Bank of the West security contact? Jeffrey Walton (Feb 09)
Re: Bank of the West security contact? Jeffrey Walton (Feb 08)
Re: Bank of the West security contact? Jeffrey Walton (Feb 08)
jen140
Re: DoS via tables corruption in WordPress jen140 (Feb 12)
Jerome Athias
Re: A question for the list - WordPress plugin inspections Jerome Athias (Feb 20)
Re: A question for the list - WordPress plugin inspections Jerome Athias (Feb 20)
Jing Wang
yahoo open redirect vulnerability full disclosur Jing Wang (Feb 12)
John Cartwright
List Charter John Cartwright (Feb 12)
Julien Ahrens
VideoCharge Studio v2.12.3.685 cc.dll CHTTPResponse::GetHttpResponse() Buffer Overflow Remote Code Execution Julien Ahrens (Feb 19)
Justin Ferguson
Fwd: Re: [CVE-2013-6986] Insecure Data Storage in Subway Ordering Justin Ferguson (Feb 08)
Re: Fwd: Re: Bank of the West security contact? Justin Ferguson (Feb 09)
Re: Bank of the West security contact? Justin Ferguson (Feb 08)
Re: Bank of the West security contact? Justin Ferguson (Feb 08)
Re: Bank of the West security contact? Justin Ferguson (Feb 08)
Re: Fwd: Re: Bank of the West security contact? Justin Ferguson (Feb 09)
Fwd: Re: Bank of the West security contact? Justin Ferguson (Feb 08)
Re: Bank of the West security contact? Justin Ferguson (Feb 08)
Re: Bank of the West security contact? Justin Ferguson (Feb 08)
Re: Bank of the West security contact? Justin Ferguson (Feb 08)
Re: Bank of the West security contact? Justin Ferguson (Feb 08)
Re: Fwd: Re: Bank of the West security contact? Justin Ferguson (Feb 09)
kaveh ghaemmaghami
Fwd: Fwd: Re: [CVE-2013-6986] Insecure Data Storage in Subway Ordering kaveh ghaemmaghami (Feb 08)
Happy chines new year kaveh ghaemmaghami (Feb 05)
Kristian Erik Hermansen
Re: extension for Firefox to force HTTPS always? Kristian Erik Hermansen (Feb 08)
Bank of the West security contact? Kristian Erik Hermansen (Feb 07)
Krzysztof Kotowicz
[CVE-2014-1403] DOM XSS in EasyXDM 2.4.18 Krzysztof Kotowicz (Feb 02)
Larry W. Cashdollar
Persistent XSS in Media File Renamer V1.7.0 wordpress plugin Larry W. Cashdollar (Feb 23)
Luciano Bello
[SECURITY] [DSA 2863-1] libtar security update Luciano Bello (Feb 19)
[SECURITY] [DSA 2853-1] horde3 security update Luciano Bello (Feb 06)
Mario Vilas
Re: [CVE-2014-1860] PHP object insertion / possible RCE in Contao CMS <= 3.2.4 Mario Vilas (Feb 07)
Mark Litchfield
Ektron CMS TakeOver Part (2) - PaylPal-Forward.com demonstration Mark Litchfield (Feb 04)
Re: [SPAM] Re: Ektron CMS TakeOver Part (2) - PaylPal-Forward.com demonstration Mark Litchfield (Feb 05)
Ebay, Inc Bug Bounty - GoStoreGo Administrative Authentication Bypass to all online stores Mark Litchfield (Feb 12)
Re: Ektron CMS TakeOver Part (2) - PaylPal-Forward.com demonstration Mark Litchfield (Feb 05)
Shopify (Bug Bounty) - XML External Entity Vulnerability Mark Litchfield (Feb 17)
Re: Ektron CMS TakeOver Part (2) - PaylPal-Forward.com demonstration Mark Litchfield (Feb 05)
Google XXE Vulnerability Mark Litchfield (Feb 21)
Re: [SPAM] Re: Ektron CMS TakeOver Part (2) - PaylPal-Forward.com demonstration Mark Litchfield (Feb 05)
Various Vulnerabilities - SiteCore CMS / Mura CMS / Ektron CMS / SmarterMail / Yahoo / Paypal Mark Litchfield (Feb 04)
Mark Thomas
[SECURITY] CVE-2013-4590 Information disclosure via XXE when running untrusted web applications Mark Thomas (Feb 25)
[SECURITY] CVE-2013-4322 Incomplete fix for CVE-2012-3544 (Denial of Service) Mark Thomas (Feb 25)
[SECURITY] CVE-2014-0033 Session fixation still possible with disableURLRewriting enabled Mark Thomas (Feb 25)
[SECURITY] CVE-2013-4286 Incomplete fix for CVE-2005-2090 (Information disclosure) Mark Thomas (Feb 25)
[SECURITY] CVE-2014-0050 Apache Commons FileUpload and Apache Tomcat DoS Mark Thomas (Feb 06)
Martin Grigorov
[CVE-2013-2055] Apache Wicket information disclosure vulnerability Martin Grigorov (Feb 06)
Matthew Daley
Information on recently-fixed Oracle VM VirtualBox vulnerabilities Matthew Daley (Feb 07)
Matthew Hall
temporary file creation vulnerability in Redis Matthew Hall (Feb 22)
Mattias Bååth
0x07 SEC-T.org 2014 CALL FOR PAPERS Process Start Mattias Bååth (Feb 11)
Re: 0x07 SEC-T.org 2014 CALL FOR PAPERS Process Start NEW CONFERENCE DATES! Mattias Bååth (Feb 18)
Michael Gilbert
[SECURITY] [DSA 2862-1] chromium-browser security update Michael Gilbert (Feb 17)
Michal Zalewski
Re: [OT] pls ignore Michal Zalewski (Feb 23)
Mikhail A. Utin
Re: DoS via tables corruption in WordPress (Timothy Goddard) Mikhail A. Utin (Feb 12)
Milan Berger
Re: [SECURITY] [DSA 2867-1] otrs2 security update Milan Berger (Feb 24)
Moritz Muehlenhoff
[SECURITY] [DSA 2857-1] libspring-java security update Moritz Muehlenhoff (Feb 08)
[SECURITY] [DSA 2864-1] postgresql-8.4 security update Moritz Muehlenhoff (Feb 20)
[SECURITY] [DSA 2859-1] pidgin security update Moritz Muehlenhoff (Feb 10)
[SECURITY] [DSA 2865-1] postgresql-9.1 security update Moritz Muehlenhoff (Feb 20)
[SECURITY] [DSA 2855-1] libav security update Moritz Muehlenhoff (Feb 05)
[SECURITY] [DSA 2858-1] iceweasel security update Moritz Muehlenhoff (Feb 10)
Muhammad Adnan
Work Practices of Cyber Security Professionals Muhammad Adnan (Feb 12)
MustLive
Re: DoS via tables corruption in WordPress MustLive (Feb 12)
Vulnerabilities in Contact Form 7 for WordPress MustLive (Jan 31)
New vulnerabilities in Google Maps plugin for Joomla MustLive (Feb 07)
XSS and CS vulnerabilities in DSMS MustLive (Feb 15)
Multiple vulnerabilities in Joomla-Base MustLive (Feb 25)
Re: DoS via tables corruption in WordPress MustLive (Feb 21)
Re: DoS via tables corruption in WordPress MustLive (Feb 12)
DAVOSET v.1.1.7 MustLive (Feb 13)
DoS via tables corruption in WordPress MustLive (Feb 10)
Multiple vulnerabilities in JoomLeague for Joomla MustLive (Feb 23)
Nicholas Lemonias.
CISCO Systems Inc. Security Report, Web App Vulnerabilities (XSS) Nicholas Lemonias. (Feb 19)
Web App Sec: (AT&T Corporation) former American Telecommunication & Telegraph Vulnerabilities (Cross-Site Scripting / OWASP Top 10) Nicholas Lemonias. (Feb 27)
British Sky Broadcasting Corporation - Web App vulnerabilities (XSS) Nicholas Lemonias. (Feb 26)
Visa (Europe) XSS Vulnerability Nicholas Lemonias. (Feb 07)
Sinopec Ltd. (XSS) Web App Vulnerabilities Nicholas Lemonias. (Feb 19)
Omar Benbouazza
RootedArena 2014: Information Omar Benbouazza (Feb 18)
Patrick Schleizer
Whonix Anonymous Operating System Version 8 Released! Patrick Schleizer (Feb 28)
Paul Ammann
Re: Hacking in Schools Paul Ammann (Feb 26)
Pedro Luis Karrasquillo
MS 2k8 DNS server trivial DDoS contributor Pedro Luis Karrasquillo (Feb 25)
Microsoft DNS server unwitting DDoS contributor Pedro Luis Karrasquillo (Feb 26)
Pedro Ribeiro
[CVE-2014-1860] PHP object insertion / possible RCE in Contao CMS <= 3.2.4 Pedro Ribeiro (Feb 04)
[CVE-2014-2027] PHP objection insertion / arbitrary file deletion / possible RCE in egroupware <= 1.8.005 Pedro Ribeiro (Feb 20)
[CVE-2014-1836] Arbitrary file deletion in ImpressCMS < 1.3.6 and two XSS issues Pedro Ribeiro (Feb 04)
Pedro Worcel
Re: [OT] pls ignore Pedro Worcel (Feb 21)
peng . deng
[CVE-2014-2069] 'eshtery CMS' allows remote attackers to read arbitrary files peng . deng (Feb 22)
Pete Herzog
Hacking in Schools Pete Herzog (Feb 25)
Pichaya Morimoto
Revision 1 (PoC added): MediaWiki <= 1.22.1 PdfHandler Remote Code Execution Exploit (CVE-2014-1610) Pichaya Morimoto (Feb 02)
MediaWiki <= 1.22.1 PdfHandler Remote Code Execution Exploit (CVE-2014-1610) Pichaya Morimoto (Feb 02)
Pivotal Security Team
CVE-2014-0053 Information Disclosure when using Grails Pivotal Security Team (Feb 19)
Update: CVE-2014-0053 Information Disclosure when using Grails Pivotal Security Team (Feb 27)
Portcullis Advisories
CVE-2014-1215 - Local Code Execution in CoreFTP Core FTP Server Portcullis Advisories (Feb 19)
CVE-2013-1643 - Unauthorised Access To Other Users Email Messages in Symantec PGP Universal Web Messenger Portcullis Advisories (Feb 15)
CVE-2014-1220 - Disclosure Of Database Credentials in IT2 Workstation Portcullis Advisories (Feb 15)
CVE-2014-1219 - Unauthenticated Privilege Escalation in CA 2E Web Option Portcullis Advisories (Feb 12)
CVE-2014-1221 - Local Code Execution in Dameware Mini Remote Control Portcullis Advisories (Feb 12)
CVE-2014-1223 - Cross-site Scripting in Telligent Evolution Portcullis Advisories (Feb 22)
Randal T. Rioux
Re: [SPAM] Re: Ektron CMS TakeOver Part (2) - PaylPal-Forward.com demonstration Randal T. Rioux (Feb 05)
RedTeam Pentesting GmbH
[RT-SA-2014-001] McAfee ePolicy Orchestrator: XML External Entity Expansion in Dashboard RedTeam Pentesting GmbH (Feb 25)
Reed Black
Re: Apple SSL fail Reed Black (Feb 22)
Rick Olson
Re: [OT] pls ignore Rick Olson (Feb 23)
Rob Thomas
Re: Freepbx 2.x , Command Execution vuln Rob Thomas (Feb 24)
Re: Freepbx , php code execution exploit Rob Thomas (Feb 12)
Rodrigo Rubira Branco (BSDaemon)
H2HC 10 - FX Keynote Video is Up Rodrigo Rubira Branco (BSDaemon) (Feb 04)
Ronen Z
Jetro Cockpit Secure Browsing vulnerability - remote code execution on all enterprise workstations simultaneously Ronen Z (Feb 02)
Ronny Vasquez
Re: yahoo open redirect vulnerability full disclosur Ronny Vasquez (Feb 14)
root
Router D-Link DIR-100 Multiple Vulnerabilities root (Feb 02)
Rustein, Fara Denise (LATCO - Buenos Aires)
Core FTP Server Vulnerabilities Rustein, Fara Denise (LATCO - Buenos Aires) (Feb 06)
Titan FTP Server Directory Traversal Vulnerabilities - [CVE-2014-1841 / CVE-2014-1842 / CVE-2014-1843] Rustein, Fara Denise (LATCO - Buenos Aires) (Feb 10)
Salvatore Bonaccorso
[SECURITY] [DSA 2860-1] parcimonie security update Salvatore Bonaccorso (Feb 11)
[SECURITY] [DSA 2850-2] libyaml regression update Salvatore Bonaccorso (Feb 12)
[SECURITY] [DSA 2866-1] gnutls26 security update Salvatore Bonaccorso (Feb 22)
[SECURITY] [DSA 2867-1] otrs2 security update Salvatore Bonaccorso (Feb 23)
[SECURITY] [DSA 2854-1] mumble security update Salvatore Bonaccorso (Feb 05)
[SECURITY] [DSA 2861-1] file security update Salvatore Bonaccorso (Feb 16)
[SECURITY] [DSA 2851-1] drupal6 security update Salvatore Bonaccorso (Feb 02)
Sanguinarious Rose
Re: Hacking in Schools Sanguinarious Rose (Feb 26)
SEC Consult Vulnerability Lab
SEC Consult SA-20140228-0 :: Privilege escalation vulnerability in MICROSENS Profi Line Modular Industrial Switch SEC Consult Vulnerability Lab (Feb 28)
SEC Consult SA-20140227-0 :: Local Buffer Overflow vulnerability in SAS for Windows (Statistical Analysis System) SEC Consult Vulnerability Lab (Feb 27)
SEC Consult SA-20140218-0 :: Multiple critical vulnerabilities in Symantec Endpoint Protection SEC Consult Vulnerability Lab (Feb 18)
SEC Consult SA-20140228-1 :: Authentication bypass (SSRF) and local file disclosure in Plex Media Server SEC Consult Vulnerability Lab (Feb 28)
security
[ MDVSA-2014:025 ] pidgin security (Feb 11)
[ MDVSA-2014:036 ] varnish security (Feb 17)
[ MDVSA-2014:043 ] gnutls security (Feb 19)
[ MDVSA-2014:041 ] python security (Feb 19)
[ MDVSA-2014:044 ] zarafa security (Feb 19)
[ MDVSA-2014:046 ] phpmyadmin security (Feb 21)
[ MDVSA-2014:040 ] puppet security (Feb 18)
[ MDVSA-2014:045 ] libtar security (Feb 20)
[ MDVSA-2014:047 ] postgresql security (Feb 21)
[ MDVSA-2014:037 ] ffmpeg security (Feb 17)
[ MDVSA-2014:033 ] socat security (Feb 14)
[ MDVSA-2014:038 ] kernel security (Feb 17)
[ MDVSA-2014:029 ] mysql security (Feb 13)
[ MDVSA-2014:035 ] libpng security (Feb 17)
[ MDVSA-2014:028 ] mariadb security (Feb 13)
[ MDVSA-2014:026 ] openldap security (Feb 12)
[ MDVSA-2014:039 ] libgadu security (Feb 18)
[ MDVSA-2014:042 ] tomcat6 security (Feb 19)
[ MDVSA-2014:027 ] php security (Feb 12)
[ MDVSA-2014:031 ] drupal security (Feb 14)
[ MDVSA-2014:032 ] flite security (Feb 14)
[ MDVSA-2014:034 ] yaml security (Feb 14)
security curmudgeon
Re: Ektron CMS TakeOver Part (2) - PaylPal-Forward.com demonstration security curmudgeon (Feb 05)
Re: Ektron CMS TakeOver Part (2) - PaylPal-Forward.com demonstration security curmudgeon (Feb 05)
Re: Ektron CMS TakeOver Part (2) - PaylPal-Forward.com demonstration security curmudgeon (Feb 05)
security-news
[Security-news] SA-CONTRIB-2014-024 - Content Lock - CSRF security-news (Feb 26)
[Security-news] SA-CONTRIB-2014-009 - Tagadelic - Information Disclosure security-news (Feb 05)
[Security-news] SA-CONTRIB-2014-010 Services - Access Bypass and Privilege Escalation security-news (Feb 05)
[Security-news] SA-CONTRIB-2014-016 - Mayo Theme - XSS Vulnerability security-news (Feb 12)
[Security-news] SA-CONTRIB-2014-019 - Easy Social - Cross Site Scripting (XSS) security-news (Feb 12)
[Security-news] SA-CONTRIB-2014-017- Image Resize Filter - Denial of Service (DOS) security-news (Feb 12)
[Security-news] SA-CONTRIB-2014-026 - Mime Mail - Access bypass security-news (Feb 26)
[Security-news] SA-CONTRIB-2014-014 - Webform Validation - Cross Site Scripting (XSS) security-news (Feb 12)
[Security-news] SA-CONTRIB-2014-011 - Push Notifications - Information Disclosure security-news (Feb 05)
[Security-news] SA-CONTRIB-2014-025 - Open Omega - Access Bypass security-news (Feb 26)
[Security-news] SA-CONTRIB-2014-023 - Project Issue File Review - XSS security-news (Feb 26)
[Security-news] SA-CONTRIB-2014-015 - FileField - Access Bypass security-news (Feb 12)
[Security-news] SA-CONTRIB-2014-021 - Maestro - Cross Site Scripting (XSS) security-news (Feb 19)
[Security-news] SA-CONTRIB-2014-020 - Drupal Commons - Cross Site Scripting (XSS) security-news (Feb 12)
[Security-news] SA-CONTRIB-2014-012- Modal Frame API - Cross Site Scripting (XSS) security-news (Feb 05)
[Security-news] SA-CONTRIB-2014-013- Chaos tool suite (ctools) - Access Bypass security-news (Feb 12)
[Security-news] SA-CONTRIB-2014-018 - Webform - Cross Site Scripting (XSS) security-news (Feb 12)
[Security-news] SA-CONTRIB-2014-022 - Slickgrid - Access bypass security-news (Feb 19)
Seth Arnold
Re: A question for the list - WordPress plugin inspections Seth Arnold (Feb 19)
Shay Chen
[Benchmark 2014] WAVSEP Vulnerability Scanner Benchmark 2013/2014 Shay Chen (Feb 12)
Stefan Schurtz
My experiences with the GiftCards.com Bug Bounty Program Stefan Schurtz (Feb 17)
Stephan Rickauer
SQL Injection i-doit Pro (CVE-2014-1597) Stephan Rickauer (Feb 17)
CVE-2014-1237 (XSS in i-doit Pro) Stephan Rickauer (Feb 05)
Steve
44CON 2014 September 11th - 12th CFP Steve (Feb 21)
Thomas MacKenzie
Re: A question for the list - WordPress plugin inspections Thomas MacKenzie (Feb 19)
Tim Brown
Re: CVE-2013-1643 - Unauthorised Access To Other Users Email Messages in Symantec PGP Universal Web Messenger Tim Brown (Feb 17)
Timothy Goddard
Re: DoS via tables corruption in WordPress Timothy Goddard (Feb 12)
Tony Naggs
DC4420 meeting Tuesday, 25th February 2014 Tony Naggs (Feb 21)
Trevor Bergeron
Re: [OT] pls ignore Trevor Bergeron (Feb 22)
Trustwave Advisories
TWSL2014-003: Blind SQL Injection Vulnerability in Tableau Server Trustwave Advisories (Feb 10)
Vulnerability Lab
Barracuda Bug Bounty #36 Firewall - Client Side Exception Handling Web Vulnerability Vulnerability Lab (Feb 21)
Barracuda Networks Firewall Bug Bounty #32 - Filter Bypass & Persistent Web Vulnerabilities Vulnerability Lab (Feb 25)
Private Camera Pro v5.0 iOS - Multiple Web Vulnerabilities Vulnerability Lab (Feb 25)
German Telekom Bug Bounty #9 - Code Execution Vulnerability Vulnerability Lab (Feb 06)
JORJWEB Ltda (all versions) - SQL Injection Vulnerability Vulnerability Lab (Feb 24)
Barracuda Networks Bug Bounty #31 Firewall - Persistent Access Policy Vulnerability Vulnerability Lab (Feb 26)
Barracuda Message Archiver 650 - Persistent Web Vulnerability Vulnerability Lab (Feb 19)
Telekom Bug Bounty #12 - File Include Web Vulnerability Vulnerability Lab (Feb 27)
My PDF Creator & DE DM v1.4 iOS - Multiple Vulnerabilities Vulnerability Lab (Feb 17)
CNNVD Gov CN #1 - Filter Bypass & Persistent Web Vulnerability Vulnerability Lab (Feb 21)
WiFi Camera Roll v1.2 iOS - Multiple Web Vulnerabilities Vulnerability Lab (Feb 11)
Bluetooth Photo Share Pro v2.0 iOS - Multiple Vulnerabilities Vulnerability Lab (Feb 27)
German Telekom Bug Bounty #10 - Arbitrary File Upload Vulnerability Vulnerability Lab (Feb 06)
WiFiles HD v1.3 iOS - File Include Web Vulnerability Vulnerability Lab (Feb 24)
Office Assistant Pro v2.2.2 iOS - File Include Vulnerability Vulnerability Lab (Feb 15)
German Telekom Bug Bounty #11 - Remote SQL Injection Vulnerability Vulnerability Lab (Feb 06)
gpEasy v4.3.x CMS - Multiple Web Vulnerabilities Vulnerability Lab (Feb 07)
Barracuda Bug Bounty #30 Firewall - Multiple Persistent Web Vulnerabilities Vulnerability Lab (Feb 20)
Barracuda Networks Backup Appliance Application - Persistent Web Vulnerability Vulnerability Lab (Feb 26)
mbDriveHD v1.0.7 iOS - Multiple Web Vulnerabilities Vulnerability Lab (Feb 15)
File Hub v1.9.1 iOS - Multiple Web Vulnerabilities Vulnerability Lab (Feb 15)
Barracuda Networks Bug Bounty #35 - Persistent Web Vulnerability Vulnerability Lab (Feb 24)
Facebook Bug Bounty #12 - Client Side Exception Web Vulnerability Vulnerability Lab (Feb 07)
jDisk (stickto) v2.0.3 iOS - Multiple Web Vulnerabilities Vulnerability Lab (Feb 12)
Microsoft Office 365 Outlook - Filter Bypass & Persistent Editor Vulnerability Vulnerability Lab (Feb 28)
William Costa
Reflected XSS Attacks vulnerabilities in Symantec WEB Gateway 5.1.1.24 (CVE-2013-5013) William Costa (Feb 10)
Fortinet FortiOS 5.0.5 contains a reflected cross-site scripting (XSS) vulnerability ( CVE-2013-7182) William Costa (Feb 04)
Reflected XSS Attacks vulnerabilities in DELL SonicWALL Universal Management Suite v7.1 (CVE-2014-0332) William Costa (Feb 12)
XSS Reflected vulnerabilities in OS of FortiWeb v 5.0.3 (CVE-2013-7181) William Costa (Feb 04)
Williams, James K
Re: CVE-2014-1219 - Unauthenticated Privilege Escalation in CA 2E Web Option Williams, James K (Feb 14)
CA20140218-01: Security Notice for CA 2E Web Option Williams, James K (Feb 19)
Źmicier Januszkiewicz
Re: RC Trojan 1.1d (Undetected) Źmicier Januszkiewicz (Feb 20)