Full Disclosure: by date
RSS Feed
About List
All Lists
Previous period
133 messages
starting Apr 30 15 and
ending May 31 15
Date index |
Thread index |
Author index
Thursday, 30 April
Re: Mysterious CVE-2008-568 (Solaris) Cédric Picard
Re: IKE Aggressive Mode Downgrade Attack? Lee
Re: #WorldPenguinDay or this cant be right, can it? Tavis Ormandy
Friday, 01 May
Re: #WorldPenguinDay or this cant be right, can it? PIN
Re: #WorldPenguinDay or this cant be right, can it? Tavis Ormandy
Re: #WorldPenguinDay or this cant be right, can it? PIN
Monday, 04 May
HUAWEI MobiConnect 23.9.17.216 - Privilege Escalation Vulnerability Vulnerability Lab
Cisco (Newsroom) - Client Side Cross Site Scripting Vulnerability Vulnerability Lab
Grindr v2.1.1 iOS Bounty #1 - (Session) Auth Bypass Vulnerabilities Vulnerability Lab
Grindr v2.1.1 iOS - (eMail) Session Vulnerability Vulnerability Lab
Grindr 2.1.1 iOS Bug Bounty #2 - Denial of Service Software Vulnerability Vulnerability Lab
PhotoWebsite v3.1 iOS - File Include Web Vulnerability Vulnerability Lab
Tuesday, 05 May
vPhoto-Album v4.2 iOS - File Include Web Vulnerability Vulnerability Lab
Fortinet FortiAnalyzer & FortiManager - Client Side Cross Site Scripting Vulnerability Vulnerability Lab
[CVE-2014-8146/8147] - ICU heap and integer overflows / I-C-U-FAIL Pedro Ribeiro
F5 ASM JSON Profile Bypass Peter Lapp
Wednesday, 06 May
Oracle Business Intelligence Mobile HD v11.x iOS - Persistent UI Vulnerability Vulnerability Lab
PDF Converter & Editor 2.1 iOS - File Include Vulnerability Vulnerability Lab
TORNADO Computer Trading CMS - SQL Injection Vulnerability Vulnerability Lab
Alienvault OSSIM/USM Multiple Vulnerabilities Peter Lapp
[SE-2014-02] Some additional GAE Java security sandbox bypasses Security Explorations
pydio vulnerabilities Just A Fake
Thursday, 07 May
Album Streamer v2.0 iOS - Directory Traversal Vulnerability Vulnerability Lab
Yahoo eMarketing Bug Bounty #31 - Cross Site Scripting Vulnerability Vulnerability Lab
Grindr v2.1.1 iOS & Account System - Breach Attack Vulnerability Vulnerability Lab
Friday, 08 May
Pimcore v3.0.5 CMS - Multiple Web Vulnerabilities Vulnerability Lab
SAP vulnerabilities highlighted in many reports such as HP Cyber Risk Report 2015 Darya Maenkova
Yet Another Related Posts Plugin (YARPP) 4.2.4 CSRF -> XSS -> RCE Evex ola
Docker 1.6.1 - Security Advisory [150507] Eric Windisch
Re: AMD Bulldozer Linux ASLR weakness: Reducing entropy by 87.5% Hector Marco-Gisbert
Re: pydio vulnerabilities Julius Kivimäki
MT.VERNON MEDIA Web-Design v1.12 Multiple XSS (Cross-site Scripting) Web Security Vulnerabilities Jing Wang
MT.VERNON MEDIA Web-Design v1.12 Multiple SQL Injection Web Security Vulnerabilities Jing Wang
MT.VERNON MEDIA Web-Design v1.12 HTML Injection Web Security Vulnerabilities Jing Wang
Artnana Webboard version 1.4 XSS (Cross-site Scripting) Web Security Vulnerabilities Jing Wang
Feed2JS v1.7 XSS (Cross-site Scripting) Web Security Vulnerabilities Jing Wang
Re: Alienvault OSSIM/USM Multiple Vulnerabilities Peter Lapp
Capstone disassembly framework 3.0.3 is out! Nguyen Anh Quynh
DAVOSET v.1.2.4 MustLive
CVE-2014-3440 - Symantec Critical System Protection RCE Balint Varga-Perke
Wordpress Twenty Fifteen Theme - DOM XSS Vulnerability - CVE-2015-3429 Onur Yilmaz
Wordpress Roomcloud plugin v1.1(rev @1115307) XSS vulnerability Nitin Venkatesh
Saturday, 09 May
0day Mailbird XSS ? Alfred Baroti
Sqlbuddy Path Traversal Vulnerability John Page
Sunday, 10 May
Broken, Abandoned, and Forgotten Code Zach C
Monday, 11 May
G-Homa WLan Power Plug Multiple Problems honeypot
Call for Papers: RAID 2015 Skander Iversen
Tuesday, 12 May
Two invalid read errors / heap overflows in SQLite (TFPA 006/2015) Hanno Böck
Wednesday, 13 May
SEC Consult SA-20150513-0 :: Multiple critical vulnerabilities in WSO2 Identity Server SEC Consult Vulnerability Lab
Web India Solutions CMS 2015 - SQL Injection Vulnerability Vulnerability Lab
[CORE-2015-0009] - SAP LZC/LZH Compression Multiple Vulnerabilities CORE Advisories Team
Concrete5 Security Advisory - Multiple XSS Vulnerabilities - CVE-2015-2250 Onur Yilmaz
Multiple Vulnerabilities in Openlitespeed <= 1.3.10 - CVE-b045-73d a.k.a. Analbleed. Anal Bleed
New release of,STONIX OS hardening tool Roy Nielsen
Re: Concrete5 Security Advisory - Multiple XSS Vulnerabilities - CVE-2015-2250 Scott Arciszewski
Thursday, 14 May
SEC Consult SA-20150514-0 :: Multiple vulnerabilities in Loxone Smart Home (part 2) SEC Consult Vulnerability Lab
Hue 3.7.1 Local Privilege Escalation Julian Horoszkiewicz
Ambari Server 1.7.0 Local Privilege Escalation Julian Horoszkiewicz
Read heap overflow / invalid memory access in Wireshark Hanno Böck
How to detect a promiscuous interface by using WMIC Eiji James Yoshida
Broken, Abandoned, and Forgotten Code, Part 4 Zach C
[SE-2014-02] Unconfirmed / unpatched vulnerabilities in Google App Engine Security Explorations
Friday, 15 May
XML Injection, AoF and BF vulnerabilities in Hikvision DS-2CD2012-I MustLive
CSRF & XSS vulnerabilities in Encrypted Contact Form Wordpress Plugin v1.0.4 Nitin Venkatesh
Chinease attack on USIS using SAP vulnerability – Detailed review and comments Darya Maenkova
Sunday, 17 May
Soundcloud XSS (Cross-Site Scripting) Security Vulnerability Researcher Triponoid
ftpmap 0.5 Release Announcement Hypsurus
Monday, 18 May
Facebook #26 - Filter Bypass & Exception Handling Redirect Web Vulnerability Vulnerability Lab
CRUCMS Crucial Networking - SQL Injection Vulnerability Vulnerability Lab
Wireless Photo Transfer v3.0 iOS - File Include Vulnerability Vulnerability Lab
iClassSchedule 1.6 iOS & Android - Persistent UI Vulnerability Vulnerability Lab
OYO File Manager 1.1 iOS&Android - Multiple Vulnerabilities Vulnerability Lab
KL-001-2015-002 : Piriform CCleaner Wiped Filename Recovery KoreLogic Disclosures
[Samba 3.0.37] EnumPrinters memory corruption Gabriele Avosani
Tuesday, 19 May
SEC Consult SA-20150519-0 :: Critical buffer overflow vulnerability in KCodes NetUSB (VU#177092, CVE-2015-3036) SEC Consult Vulnerability Lab
SQLi in FeedWordPress WordPress plugin Adrián M . F .
Milw0rm Clone Script v1.0 - (time based) SQLi john smith
Clickheat 1.13+ Unauthenticated RCE Calum Hutton
Xamarin for Android <5.1 DLL Hijack Vulnerability ValdikSS
Re: KL-001-2015-002 : Piriform CCleaner Wiped Filename Recovery Jean-François Gingras
Multiple Vulnerabilities in ZTE AC 3633R USB Modem vishnu raju
0-day Denial of Service in IPsec-Tools Javantea
XML Injection, AoF and BF vulnerabilities in Hikvision DS-7108HWI-SH MustLive
Re: 0-day Denial of Service in IPsec-Tools Christos Zoulas
Re: Xamarin for Android <5.1 DLL Hijack Vulnerability Tim
Re: Xamarin for Android <5.1 DLL Hijack Vulnerability ValdikSS
Re: Xamarin for Android <5.1 DLL Hijack Vulnerability Tim
Re: Xamarin for Android <5.1 DLL Hijack Vulnerability ValdikSS
Wednesday, 20 May
HiDisk 2.4 iOS - (currentFolderPath) Persistent Vulnerability Vulnerability Lab
WISE-FTP Software v8.0.2 - DLL Hijacking Vulnerability Vulnerability Lab
Staff FTP v3.04 Software - DLL Hijacking Vulnerability Vulnerability Lab
Eisbär SCADA (All Versions - iOS, Android & W8) - Persistent UI Vulnerability Vulnerability Lab
hardwear.io - Hardware Security Conference Call for Papers Hardwear Team
CVE ID assignment - eZPublish vulnerability us3r777
CVE for Apple's ECDHE-ECDSA SecureTransport bug? Jeffrey Walton
Friday, 22 May
[CORE-2015-0010] - Sendio ESP Information Disclosure Vulnerability CORE Advisories Team
SAP Security Notes May 2015 Darya Maenkova
Hacktivity 2015 CFP Ferenc Spala
0day Mailbird XSS Henri Salo
Hue 3.7.1 Local Privilege Escalation Henri Salo
Multiple Vulnerabilities in Openlitespeed <= 1.3.10 - CVE-b045-73d a.k.a. Analbleed. Henri Salo
call for paper(information retrieval, privacy) Hongkai Wu
Broken, Abandoned, and Forgotten Code, Part 5 Zach C
Sunday, 24 May
Gcon Tech Solutions v1.0 XSS (Cross-site Scripting) Web Security Vulnerabilities Jing Wang
Gcon Tech Solutions v1.0 SQL Injection Web Security Vulnerabilities Jing Wang
SITEFACT CMS XSS (Cross-site Scripting) Web Security Vulnerabilities Jing Wang
phpwind v8.7 XSS (Cross-site Scripting) Web Security Vulnerabilities Jing Wang
phpwind v8.7 Unvalidated Redirects and Forwards Web Security Vulnerabilities Jing Wang
Monday, 25 May
Command injection vulnerability in Synology Photo Station Securify B.V.
Reflected Cross-Site Scripting in Synology DiskStation Manager Securify B.V.
Synology Photo Station multiple Cross-Site Scripting vulnerabilities Securify B.V.
Wednesday, 27 May
CVE-2015-4062, CVE-2015-4063: Multiple vulnerabilities in WordPress plugin "NewStatPress" Adrián M . F .
CVE-2015-4064, CVE-2015-4065: Multiple vulnerabilities in WordPress plugin "WordPress Landing Pages" Adrián M . F .
CVE-2015-4066: SQLi vulnerabilities in WordPress plugin "GigPress" Adrián M . F .
ClearPass Policy Manager Stored XSS Cristiano Maruti
Thycotic Password Manager Secret Server iOS Application - MITM SSL Certificate Vulnerability David Coomber
RootedCON 2015 videos published omarbv
hwclock(8) SUID privilege escalation up201407890
[Onapsis Security Advisory 2015-007] SAP HANA Log Injection Vulnerability Onapsis Research Labs
[Onapsis Security Advisory 2015-006] SAP HANA Information Disclosure via SQL IMPORT FROM statement Onapsis Research Labs
New release: UFONet v0.5b "Invasion" psy
Sophos WAF (WebServer Protection) does not analyze JSON data Glaudson Ocampos
Friday, 29 May
Flash: Local SWF files can leak arbitrary local files to the internet Jann Horn
Sunday, 31 May
Safari Address Spoofing (How We Got It) David Leo
The Empire Strikes Back Apple how your Mac firmware security is completely broken fG
[SEARCH-LAB advisory] More than fifty vulnerabilities in D-Link NAS and NVR devices Gergely Eberhardt
CVE-2015-3935 HTML Injection in Dolibarr NaxoneZ .
More than 60 undisclosed vulnerabilities affect 22 SOHO routers Jose Antonio Rodriguez Garcia
Logical Flaw in Google's OAuth vishnu raju
Broken, Abandoned, and Forgotten Code, Part 6 Zach C
XSS vulnerability in IBM Domino MustLive
XML Injection vulnerability in multiple Hikvision IP cameras and DVR MustLive
Re: Safari Address Spoofing (How We Got It) Michal Zalewski