Full Disclosure: by author
37 messages
starting Jul 03 20 and
ending Jul 09 20
Date index |
Thread index |
Author index
Advisories
CVE-2019-19935 - DOM XSS in Froala WYSIWYG HTML Editor Advisories (Jul 03)
Andrea Baesso
Mida Solutions eFramework <= 2.9.0 Multiple Vulnerabilities Andrea Baesso (Jul 21)
Apple Product Security via Fulldisclosure
APPLE-SA-2020-07-15-4 watchOS 6.2.8 Apple Product Security via Fulldisclosure (Jul 17)
APPLE-SA-2020-07-15-2 macOS Catalina 10.15.6, Security Update 2020-004 Mojave, Security Update 2020-004 High Sierra Apple Product Security via Fulldisclosure (Jul 17)
APPLE-SA-2020-07-15-3 tvOS 13.4.8 Apple Product Security via Fulldisclosure (Jul 17)
APPLE-SA-2020-07-15-1 iOS 13.6 and iPadOS 13.6 Apple Product Security via Fulldisclosure (Jul 17)
APPLE-SA-2020-07-15-5 Safari 13.1.2 Apple Product Security via Fulldisclosure (Jul 17)
Caiyuan Xie
Advisory:[CVE-2020-15596]ALPS ALPINE DLL Hijacking Issue Caiyuan Xie (Jul 21)
Cfir Cohen via Fulldisclosure
VMware ESXi: Multiple vulnerabilities [CVE-2020-3963, CVE-2020-3964, CVE-2020-3965, CVE-2020-3960] Cfir Cohen via Fulldisclosure (Jul 17)
Enrico Weigelt, metux IT consult
Google's Android: remote install backdoor in Google Play Services Enrico Weigelt, metux IT consult (Jul 13)
Fabio
Re: Google's Android: remote install backdoor in Google Play Services Fabio (Jul 14)
ghost
NEProfile - Remote Code Execution ghost (Jul 14)
hyp3rlinx
Microsoft Windows mshta.exe HTA File / XML External Entity Injection hyp3rlinx (Jul 07)
Julien Ahrens (RCE Security)
[CVE-2020-11882] o2 Business for Android "canvasm.myo2.SplashActivity" <= 1.2.0 Open Redirect Julien Ahrens (RCE Security) (Jul 03)
Larry W. Cashdollar via Fulldisclosure
Insecure /tmp file use in Oracle Solaris 11 Device Driver Utility v1.3.1 leads to root Larry W. Cashdollar via Fulldisclosure (Jul 14)
Marcin Kozlowski
Ptrace based fuzzer for fuzzing binaries at high speeds Marcin Kozlowski (Jul 13)
Matthias Deeg
[SYSS-2020-015]: ABUS Secvest Hybrid module (FUMO50110) - Authentication Bypass Using an Alternate Path or Channel (CWE-288) (CVE-2020-14158) Matthias Deeg (Jul 30)
Michael Lazin
Re: Google's Android: remote install backdoor in Google Play Services Michael Lazin (Jul 14)
Nicholas
Vulnerability Repot# MAMP PRO 4.2.0 Local Privilege Escalation Nicholas (Jul 24)
Philipp Buchegger
[SYSS-2020-011] Apple iOS - Exposure of Resource to Wrong Sphere (CWE-668) Philipp Buchegger (Jul 03)
Pierre Kim
Multiple vulnerabilities found in V-SOL OLTs Pierre Kim (Jul 13)
Re: Multiple vulnerabilities found in CDATA OLTs Pierre Kim (Jul 13)
Multiple vulnerabilities found in CDATA OLTs Pierre Kim (Jul 07)
Q C
Four vulnerabilities found in MikroTik's RouterOS Q C (Jul 07)
Three vulnerabilities found in MikroTik's RouterOS Q C (Jul 24)
Ryan Delaney
Verint Impact 360 login CSRF Ryan Delaney (Jul 13)
Verint Impact 360 onLogin open redirect Ryan Delaney (Jul 13)
Verint Impact 360 Open iFrame Ryan Delaney (Jul 13)
SEC Consult Vulnerability Lab
SEC Consult SA-20200728-0 :: Stored Cross-Site Scripting (XSS) Vulnerability in Namirial SIGNificant SignAnyWhere SEC Consult Vulnerability Lab (Jul 29)
SEC Consult SA-20200701-0 :: Reflected Cross-Site Scripting (XSS) in EQDKP Plus CMS SEC Consult Vulnerability Lab (Jul 01)
SEC Consult SA-20200724-0 :: Privilege Escalation Vulnerability in SteelCentral Aternity Agent SEC Consult Vulnerability Lab (Jul 24)
SEC Consult SA-20200708-0 :: Multiple Critical Vulnerabilities in Multiple Rittal Products Based on Same Software SEC Consult Vulnerability Lab (Jul 10)
SEC Consult SA-20200717-0 :: Multiple Vulnerabilities in WonderCMS SEC Consult Vulnerability Lab (Jul 17)
Securify B.V. via Fulldisclosure
Microsoft OneDrive client for Windows Qt QML module hijack Securify B.V. via Fulldisclosure (Jul 09)
Sivanesh Ashok
Bolt CMS <= 3.7.0 Multiple Vulnerabilities - CSRF to RCE Sivanesh Ashok (Jul 03)
Stefan Kanthak
Defense in depth -- the Microsoft way (part 70): CVE-2014-0315 alias MS14-019 revisited Stefan Kanthak (Jul 24)
X41 D-Sec GmbH Advisories
X41 D-Sec GmbH Security Advisory X41-2020-006: Memory Corruption Vulnerability in bspatch X41 D-Sec GmbH Advisories (Jul 09)