Full Disclosure: by author
133 messages
starting May 27 15 and
ending May 22 15
Date index |
Thread index |
Author index
Adrián M . F .
CVE-2015-4062, CVE-2015-4063: Multiple vulnerabilities in WordPress plugin "NewStatPress" Adrián M . F . (May 27)
CVE-2015-4066: SQLi vulnerabilities in WordPress plugin "GigPress" Adrián M . F . (May 27)
CVE-2015-4064, CVE-2015-4065: Multiple vulnerabilities in WordPress plugin "WordPress Landing Pages" Adrián M . F . (May 27)
SQLi in FeedWordPress WordPress plugin Adrián M . F . (May 19)
Alfred Baroti
0day Mailbird XSS ? Alfred Baroti (May 09)
Anal Bleed
Multiple Vulnerabilities in Openlitespeed <= 1.3.10 - CVE-b045-73d a.k.a. Analbleed. Anal Bleed (May 13)
Balint Varga-Perke
CVE-2014-3440 - Symantec Critical System Protection RCE Balint Varga-Perke (May 08)
Calum Hutton
Clickheat 1.13+ Unauthenticated RCE Calum Hutton (May 19)
Cédric Picard
Re: Mysterious CVE-2008-568 (Solaris) Cédric Picard (Apr 30)
Christos Zoulas
Re: 0-day Denial of Service in IPsec-Tools Christos Zoulas (May 19)
CORE Advisories Team
[CORE-2015-0009] - SAP LZC/LZH Compression Multiple Vulnerabilities CORE Advisories Team (May 13)
[CORE-2015-0010] - Sendio ESP Information Disclosure Vulnerability CORE Advisories Team (May 22)
Cristiano Maruti
ClearPass Policy Manager Stored XSS Cristiano Maruti (May 27)
Darya Maenkova
SAP Security Notes May 2015 Darya Maenkova (May 22)
SAP vulnerabilities highlighted in many reports such as HP Cyber Risk Report 2015 Darya Maenkova (May 08)
Chinease attack on USIS using SAP vulnerability – Detailed review and comments Darya Maenkova (May 15)
David Coomber
Thycotic Password Manager Secret Server iOS Application - MITM SSL Certificate Vulnerability David Coomber (May 27)
David Leo
Safari Address Spoofing (How We Got It) David Leo (May 31)
Eiji James Yoshida
How to detect a promiscuous interface by using WMIC Eiji James Yoshida (May 14)
Eric Windisch
Docker 1.6.1 - Security Advisory [150507] Eric Windisch (May 08)
Evex ola
Yet Another Related Posts Plugin (YARPP) 4.2.4 CSRF -> XSS -> RCE Evex ola (May 08)
Ferenc Spala
Hacktivity 2015 CFP Ferenc Spala (May 22)
fG
The Empire Strikes Back Apple how your Mac firmware security is completely broken fG (May 31)
Gabriele Avosani
[Samba 3.0.37] EnumPrinters memory corruption Gabriele Avosani (May 18)
Gergely Eberhardt
[SEARCH-LAB advisory] More than fifty vulnerabilities in D-Link NAS and NVR devices Gergely Eberhardt (May 31)
Glaudson Ocampos
Sophos WAF (WebServer Protection) does not analyze JSON data Glaudson Ocampos (May 27)
Hanno Böck
Read heap overflow / invalid memory access in Wireshark Hanno Böck (May 14)
Two invalid read errors / heap overflows in SQLite (TFPA 006/2015) Hanno Böck (May 12)
Hardwear Team
hardwear.io - Hardware Security Conference Call for Papers Hardwear Team (May 20)
Hector Marco-Gisbert
Re: AMD Bulldozer Linux ASLR weakness: Reducing entropy by 87.5% Hector Marco-Gisbert (May 08)
Henri Salo
Multiple Vulnerabilities in Openlitespeed <= 1.3.10 - CVE-b045-73d a.k.a. Analbleed. Henri Salo (May 22)
Hue 3.7.1 Local Privilege Escalation Henri Salo (May 22)
0day Mailbird XSS Henri Salo (May 22)
honeypot
G-Homa WLan Power Plug Multiple Problems honeypot (May 11)
Hongkai Wu
call for paper(information retrieval, privacy) Hongkai Wu (May 22)
Hypsurus
ftpmap 0.5 Release Announcement Hypsurus (May 17)
Jann Horn
Flash: Local SWF files can leak arbitrary local files to the internet Jann Horn (May 29)
Javantea
0-day Denial of Service in IPsec-Tools Javantea (May 19)
Jean-François Gingras
Re: KL-001-2015-002 : Piriform CCleaner Wiped Filename Recovery Jean-François Gingras (May 19)
Jeffrey Walton
CVE for Apple's ECDHE-ECDSA SecureTransport bug? Jeffrey Walton (May 20)
Jing Wang
MT.VERNON MEDIA Web-Design v1.12 HTML Injection Web Security Vulnerabilities Jing Wang (May 08)
phpwind v8.7 Unvalidated Redirects and Forwards Web Security Vulnerabilities Jing Wang (May 24)
Gcon Tech Solutions v1.0 SQL Injection Web Security Vulnerabilities Jing Wang (May 24)
phpwind v8.7 XSS (Cross-site Scripting) Web Security Vulnerabilities Jing Wang (May 24)
Artnana Webboard version 1.4 XSS (Cross-site Scripting) Web Security Vulnerabilities Jing Wang (May 08)
Gcon Tech Solutions v1.0 XSS (Cross-site Scripting) Web Security Vulnerabilities Jing Wang (May 24)
MT.VERNON MEDIA Web-Design v1.12 Multiple SQL Injection Web Security Vulnerabilities Jing Wang (May 08)
Feed2JS v1.7 XSS (Cross-site Scripting) Web Security Vulnerabilities Jing Wang (May 08)
SITEFACT CMS XSS (Cross-site Scripting) Web Security Vulnerabilities Jing Wang (May 24)
MT.VERNON MEDIA Web-Design v1.12 Multiple XSS (Cross-site Scripting) Web Security Vulnerabilities Jing Wang (May 08)
John Page
Sqlbuddy Path Traversal Vulnerability John Page (May 09)
john smith
Milw0rm Clone Script v1.0 - (time based) SQLi john smith (May 19)
Jose Antonio Rodriguez Garcia
More than 60 undisclosed vulnerabilities affect 22 SOHO routers Jose Antonio Rodriguez Garcia (May 31)
Julian Horoszkiewicz
Hue 3.7.1 Local Privilege Escalation Julian Horoszkiewicz (May 14)
Ambari Server 1.7.0 Local Privilege Escalation Julian Horoszkiewicz (May 14)
Julius Kivimäki
Re: pydio vulnerabilities Julius Kivimäki (May 08)
Just A Fake
pydio vulnerabilities Just A Fake (May 06)
KoreLogic Disclosures
KL-001-2015-002 : Piriform CCleaner Wiped Filename Recovery KoreLogic Disclosures (May 18)
Lee
Re: IKE Aggressive Mode Downgrade Attack? Lee (Apr 30)
Michal Zalewski
Re: Safari Address Spoofing (How We Got It) Michal Zalewski (May 31)
MustLive
XSS vulnerability in IBM Domino MustLive (May 31)
XML Injection vulnerability in multiple Hikvision IP cameras and DVR MustLive (May 31)
DAVOSET v.1.2.4 MustLive (May 08)
XML Injection, AoF and BF vulnerabilities in Hikvision DS-7108HWI-SH MustLive (May 19)
XML Injection, AoF and BF vulnerabilities in Hikvision DS-2CD2012-I MustLive (May 15)
NaxoneZ .
CVE-2015-3935 HTML Injection in Dolibarr NaxoneZ . (May 31)
Nguyen Anh Quynh
Capstone disassembly framework 3.0.3 is out! Nguyen Anh Quynh (May 08)
Nitin Venkatesh
Wordpress Roomcloud plugin v1.1(rev @1115307) XSS vulnerability Nitin Venkatesh (May 08)
CSRF & XSS vulnerabilities in Encrypted Contact Form Wordpress Plugin v1.0.4 Nitin Venkatesh (May 15)
omarbv
RootedCON 2015 videos published omarbv (May 27)
Onapsis Research Labs
[Onapsis Security Advisory 2015-006] SAP HANA Information Disclosure via SQL IMPORT FROM statement Onapsis Research Labs (May 27)
[Onapsis Security Advisory 2015-007] SAP HANA Log Injection Vulnerability Onapsis Research Labs (May 27)
Onur Yilmaz
Wordpress Twenty Fifteen Theme - DOM XSS Vulnerability - CVE-2015-3429 Onur Yilmaz (May 08)
Concrete5 Security Advisory - Multiple XSS Vulnerabilities - CVE-2015-2250 Onur Yilmaz (May 13)
Pedro Ribeiro
[CVE-2014-8146/8147] - ICU heap and integer overflows / I-C-U-FAIL Pedro Ribeiro (May 05)
Peter Lapp
Re: Alienvault OSSIM/USM Multiple Vulnerabilities Peter Lapp (May 08)
Alienvault OSSIM/USM Multiple Vulnerabilities Peter Lapp (May 06)
F5 ASM JSON Profile Bypass Peter Lapp (May 05)
PIN
Re: #WorldPenguinDay or this cant be right, can it? PIN (May 01)
Re: #WorldPenguinDay or this cant be right, can it? PIN (May 01)
psy
New release: UFONet v0.5b "Invasion" psy (May 27)
Researcher Triponoid
Soundcloud XSS (Cross-Site Scripting) Security Vulnerability Researcher Triponoid (May 17)
Roy Nielsen
New release of,STONIX OS hardening tool Roy Nielsen (May 13)
Scott Arciszewski
Re: Concrete5 Security Advisory - Multiple XSS Vulnerabilities - CVE-2015-2250 Scott Arciszewski (May 13)
SEC Consult Vulnerability Lab
SEC Consult SA-20150519-0 :: Critical buffer overflow vulnerability in KCodes NetUSB (VU#177092, CVE-2015-3036) SEC Consult Vulnerability Lab (May 19)
SEC Consult SA-20150513-0 :: Multiple critical vulnerabilities in WSO2 Identity Server SEC Consult Vulnerability Lab (May 13)
SEC Consult SA-20150514-0 :: Multiple vulnerabilities in Loxone Smart Home (part 2) SEC Consult Vulnerability Lab (May 14)
Securify B.V.
Synology Photo Station multiple Cross-Site Scripting vulnerabilities Securify B.V. (May 25)
Reflected Cross-Site Scripting in Synology DiskStation Manager Securify B.V. (May 25)
Command injection vulnerability in Synology Photo Station Securify B.V. (May 25)
Security Explorations
[SE-2014-02] Unconfirmed / unpatched vulnerabilities in Google App Engine Security Explorations (May 14)
[SE-2014-02] Some additional GAE Java security sandbox bypasses Security Explorations (May 06)
Skander Iversen
Call for Papers: RAID 2015 Skander Iversen (May 11)
Tavis Ormandy
Re: #WorldPenguinDay or this cant be right, can it? Tavis Ormandy (May 01)
Re: #WorldPenguinDay or this cant be right, can it? Tavis Ormandy (Apr 30)
Tim
Re: Xamarin for Android <5.1 DLL Hijack Vulnerability Tim (May 19)
Re: Xamarin for Android <5.1 DLL Hijack Vulnerability Tim (May 19)
up201407890
hwclock(8) SUID privilege escalation up201407890 (May 27)
us3r777
CVE ID assignment - eZPublish vulnerability us3r777 (May 20)
ValdikSS
Re: Xamarin for Android <5.1 DLL Hijack Vulnerability ValdikSS (May 19)
Re: Xamarin for Android <5.1 DLL Hijack Vulnerability ValdikSS (May 19)
Xamarin for Android <5.1 DLL Hijack Vulnerability ValdikSS (May 19)
vishnu raju
Multiple Vulnerabilities in ZTE AC 3633R USB Modem vishnu raju (May 19)
Logical Flaw in Google's OAuth vishnu raju (May 31)
Vulnerability Lab
Yahoo eMarketing Bug Bounty #31 - Cross Site Scripting Vulnerability Vulnerability Lab (May 07)
Fortinet FortiAnalyzer & FortiManager - Client Side Cross Site Scripting Vulnerability Vulnerability Lab (May 05)
OYO File Manager 1.1 iOS&Android - Multiple Vulnerabilities Vulnerability Lab (May 18)
Web India Solutions CMS 2015 - SQL Injection Vulnerability Vulnerability Lab (May 13)
HiDisk 2.4 iOS - (currentFolderPath) Persistent Vulnerability Vulnerability Lab (May 20)
Grindr v2.1.1 iOS - (eMail) Session Vulnerability Vulnerability Lab (May 04)
Grindr v2.1.1 iOS & Account System - Breach Attack Vulnerability Vulnerability Lab (May 07)
HUAWEI MobiConnect 23.9.17.216 - Privilege Escalation Vulnerability Vulnerability Lab (May 04)
PDF Converter & Editor 2.1 iOS - File Include Vulnerability Vulnerability Lab (May 06)
Wireless Photo Transfer v3.0 iOS - File Include Vulnerability Vulnerability Lab (May 18)
Cisco (Newsroom) - Client Side Cross Site Scripting Vulnerability Vulnerability Lab (May 04)
TORNADO Computer Trading CMS - SQL Injection Vulnerability Vulnerability Lab (May 06)
PhotoWebsite v3.1 iOS - File Include Web Vulnerability Vulnerability Lab (May 04)
Album Streamer v2.0 iOS - Directory Traversal Vulnerability Vulnerability Lab (May 07)
Oracle Business Intelligence Mobile HD v11.x iOS - Persistent UI Vulnerability Vulnerability Lab (May 06)
WISE-FTP Software v8.0.2 - DLL Hijacking Vulnerability Vulnerability Lab (May 20)
Eisbär SCADA (All Versions - iOS, Android & W8) - Persistent UI Vulnerability Vulnerability Lab (May 20)
iClassSchedule 1.6 iOS & Android - Persistent UI Vulnerability Vulnerability Lab (May 18)
vPhoto-Album v4.2 iOS - File Include Web Vulnerability Vulnerability Lab (May 05)
Pimcore v3.0.5 CMS - Multiple Web Vulnerabilities Vulnerability Lab (May 08)
Grindr v2.1.1 iOS Bounty #1 - (Session) Auth Bypass Vulnerabilities Vulnerability Lab (May 04)
Staff FTP v3.04 Software - DLL Hijacking Vulnerability Vulnerability Lab (May 20)
CRUCMS Crucial Networking - SQL Injection Vulnerability Vulnerability Lab (May 18)
Facebook #26 - Filter Bypass & Exception Handling Redirect Web Vulnerability Vulnerability Lab (May 18)
Grindr 2.1.1 iOS Bug Bounty #2 - Denial of Service Software Vulnerability Vulnerability Lab (May 04)
Zach C
Broken, Abandoned, and Forgotten Code, Part 4 Zach C (May 14)
Broken, Abandoned, and Forgotten Code, Part 6 Zach C (May 31)
Broken, Abandoned, and Forgotten Code Zach C (May 10)
Broken, Abandoned, and Forgotten Code, Part 5 Zach C (May 22)