Full Disclosure: by author
34 messages
starting Nov 15 19 and
ending Nov 29 19
Date index |
Thread index |
Author index
Alphan YAVAS
Vulnerability Disclosure and CVE assign Alphan YAVAS (Nov 15)
Andraz Sraka
[CFP] Security BSides Ljubljana 0x7E4 | April 4, 2020 Andraz Sraka (Nov 26)
Apple Product Security via Fulldisclosure
APPLE-SA-2019-11-01-1 Xcode 11.2 Apple Product Security via Fulldisclosure (Nov 04)
Asterisk Security Team
AST-2019-007: AMI user could execute system commands. Asterisk Security Team (Nov 21)
AST-2019-006: SIP request can change address of a SIP peer. Asterisk Security Team (Nov 21)
AST-2019-008: Re-invite with T.38 and malformed SDP causes crash. Asterisk Security Team (Nov 21)
Bug Reporter
Vulnerability in MiBox3 Bug Reporter (Nov 26)
Daniel Bishtawi
Multiple Cross-site Scripting Vulnerabilities in ilchCMS 2.1.23 Daniel Bishtawi (Nov 05)
David Coomber
Anhui Huami Mi Fit Android Application - Unencrypted Update Check David Coomber (Nov 26)
Georgi Guninski
pari/gp on debian stable allow arbitrary file write Georgi Guninski (Nov 26)
Minor security issue in punbb with SQLite Georgi Guninski (Nov 12)
Hacxx Under 2
Getting the server ip from a hosted XenForo CMS Hacxx Under 2 (Nov 15)
hyp3rlinx
Max Secure Anti Virus Plus - 19.0.4.020 / CVE-2019-19382 Insecure Permissions hyp3rlinx (Nov 29)
NAPC Xinet Elegant 6 Asset Library Web Interface v6.1.655 / Pre-Auth SQL Injection 0Day hyp3rlinx (Nov 29)
ScanGuard Antivirus (latest version) / Insecure Permissions hyp3rlinx (Nov 15)
infinitybuzz via Fulldisclosure
Centraleyezer: Unrestricted File Upload -[CVE-2019-12271] infinitybuzz via Fulldisclosure (Nov 15)
Centraleyezer: Stored XSS using HTML Entities — [CVE-2019–12299] infinitybuzz via Fulldisclosure (Nov 15)
Centraleyezer: Unrestricted File Upload — [CVE-2019–12311] infinitybuzz via Fulldisclosure (Nov 15)
Kevin R
CVE-2019-16758 Lexmark Services Monitor 2.27.4.0.39 Directory Traversal Kevin R (Nov 19)
Marcin Kozlowski
CVE-2019-11932 (double free in libpl_droidsonroids_gif) many apps vulnerable Marcin Kozlowski (Nov 26)
Matthias Deeg
[SYSS-2019-027]: Inateck BCST-60 Barcode Scanner - Keystroke Injection Vulnerability (CVE-2019-12503) Matthias Deeg (Nov 29)
Nightwatch Cybersecurity Research
Insecure Defaults in Adobe’s Mobile SDKs Nightwatch Cybersecurity Research (Nov 08)
okan coskun
Raritan CommandCenter Secure Gateway XSS Vulnerability on < 8.0 okan coskun (Nov 15)
Raritan CommandCenter Secure Gateway XML External Entity < 8.0 okan coskun (Nov 15)
Stored XSS Vulnerability on TP-Link Archer VR300 v1 okan coskun (Nov 15)
p3rd1d0s via Fulldisclosure
arbitrary file capture in Kaspersky Total Security 2019 p3rd1d0s via Fulldisclosure (Nov 22)
Prajwal Panchmahalkar
c0c0n 2020 Middle East| Abu Dhabhi | The cy0ps c0n - CFP & CFW is Open ! Prajwal Panchmahalkar (Nov 15)
Prestigia
WordPress Plugin Social Photo Gallery 1.0 - Remote Code Execution Prestigia (Nov 15)
psy
XSSer v.1.8[2] - "The Hiv3!" released psy (Nov 17)
sec-advisory
[AIT-SA-20191112-01] CVE-2019-10143: Privilege Escalation via Logrotate in FreeRadius sec-advisory (Nov 15)
SEC Consult Vulnerability Lab
SEC Consult SA-20191125-0 :: FortiGuard XOR Encryption in Multiple Fortinet Products SEC Consult Vulnerability Lab (Nov 25)
Re: SEC Consult SA-20191125-0 :: FortiGuard XOR Encryption in Multiple Fortinet Products SEC Consult Vulnerability Lab (Nov 26)
Sprenger, Nicolas Hendrik
CVE-2019-18922; Directory Traversal; Allied Telesis AT-GS950/8 until Firmware AT-S107 V.1.1.3 [1.00.047] Sprenger, Nicolas Hendrik (Nov 29)
Tim
Re: Anhui Huami Mi Fit Android Application - Unencrypted Update Check Tim (Nov 29)