Full Disclosure: by author

• RSS Feed
• About List
• All Lists

Previous period

Next period

52 messages starting Jun 09 17 and ending Jun 06 17
Date index | Thread index | Author index

Alan Coopersmith

Re: libcroco multiple vulnerabilities Alan Coopersmith (Jun 09)

Black Arch

New BlackArch Linux ISOs (2017.06.13) released! Black Arch (Jun 13)

Brandon Perry

Re: libquicktime multiple vulnerabilities Brandon Perry (Jun 09)

Caleb Cushing

Vaadin Javascript Injection Caleb Cushing (Jun 22)

Core Security Advisories Team

[CORE-2017-0003] - Kaspersky Anti-Virus File Server Multiple Vulnerabilities Core Security Advisories Team (Jun 28)

DefenseCode

DefenseCode Security Advisory: IBM DB2 Command Line Processor Buffer Overflow DefenseCode (Jun 26)
DefenseCode ThunderScan SAST Advisory: WordPress Simple Slideshow Manager Plugin Multiple Security Vulnerabilities DefenseCode (Jun 02)
DefenseCode ThunderScan SAST Advisory: WordPress No External Links Plugin Security Vulnerability DefenseCode (Jun 02)
DefenseCode WebScanner DAST Advisory: WordPress Tribulant Newsletters Plugin Multiple Security Vulnerabilities DefenseCode (Jun 02)

dxw Security

Reflected XSS in WordPress Download Manager could allow an attacker to do almost anything an admin can (WordPress plugin) dxw Security (Jun 20)
Path traversal in Photo Gallery may allow admins to read most files on the filesystem (WordPress plugin) dxw Security (Jun 20)

EMC Product Security Response Center

ESA-2017-063: RSA Archer® GRC Platform Multiple Vulnerabilities EMC Product Security Response Center (Jun 30)

gregory draperi

Microsoft Dynamic CRM 2016 - Cross-Site Scripting vulnerability gregory draperi (Jun 30)

Hal Martin

CVE-2017-8083 CompuLab IntensePC lacks BIOS Write Protection Hal Martin (Jun 06)

InterN0T via Fulldisclosure

BestSafe Browser FREE NoAds - Remote Code Execution InterN0T via Fulldisclosure (Jun 30)
Australian Education App - Remote Code Execution InterN0T via Fulldisclosure (Jun 30)
eVestigator Forensic PenTester v1 - Remote Code Execution via MITM InterN0T via Fulldisclosure (Jun 30)

Karn Ganeshen

Trihedral VTScada Multiple Vulnerabilities Karn Ganeshen (Jun 29)
Digital Canal Structural Wind Analysis Stack Buffer Overflow Karn Ganeshen (Jun 29)
Schneider Electric Pro-Face WinGP – Runtime.exe – Insecure Library Loading Allows Code Execution Karn Ganeshen (Jun 30)
Schneider Electric Interactive Graphical SCADA System Software – Insecure Library Loading Allows Code Execution Karn Ganeshen (Jun 29)
BLF-Tech LLC VisualView HMI Software – Insecure Library Loading Allows Code Execution Karn Ganeshen (Jun 29)
Schneider Electric Wonderware InduSoft Web Studio Privilege Escalation Karn Ganeshen (Jun 29)
Microsoft Machine Debug Manager (mdm) DLL side loading vulnerability Karn Ganeshen (Jun 29)
Microsoft Office Patch Installer Executables - Insecure Library Loading Allows Code Execution Karn Ganeshen (Jun 29)

Mikhail Utin

malicious hypervisor aka root-kit hypervisor threat is rel Mikhail Utin (Jun 26)

Moritz Jodeit

OffensiveCon Berlin 2018 Call for Papers Moritz Jodeit (Jun 22)

MustLive

Vulnerabilities in D-Link DIR-100 MustLive (Jun 26)

qflb.wu

Freeware Advanced Audio Coder (FAAC) multiple vulnerabilities qflb.wu (Jun 20)
Freeware Advanced Audio Decoder 2 (FAAD2) multiple vulnerabilities qflb.wu (Jun 27)
libcroco multiple vulnerabilities qflb.wu (Jun 08)
libquicktime multiple vulnerabilities qflb.wu (Jun 08)

Qualys Security Advisory

Qualys Security Advisory - CVE-2017-1000367 in Sudo's get_process_ttyname() for Linux Qualys Security Advisory (Jun 02)

Richard Young

APC UPS Daemon <= 3.14.14 Local Privilege Escalation Richard Young (Jun 16)

Robert Święcki

Re: Freeware Advanced Audio Decoder 2 (FAAD2) multiple vulnerabilities Robert Święcki (Jun 29)

SEC Consult Vulnerability Lab

SEC Consult SA-20170630-0 :: Multiple critical vulnerabilities in OSCI-Transport library 1.2 for German e-Government SEC Consult Vulnerability Lab (Jun 30)
SEC Consult SA-20170613-0 :: Access Restriction Bypass in Atlassian Confluence SEC Consult Vulnerability Lab (Jun 13)
SEC Consult SA-20170607-0 :: Various WiMAX CPEs Authentication Bypass SEC Consult Vulnerability Lab (Jun 07)
SEC Consult SA-20170622-0 :: XXE, SQLi, XSS & local file disclosure in Cisco Prime Infrastructure SEC Consult Vulnerability Lab (Jun 22)

Stefan Kanthak

Executable installers are vulnerable^WEVIL (case 52): escalation of privilege with Microsoft's .NET Framework installers Stefan Kanthak (Jun 29)
[CVE-2017-5688] Executable installers are vulnerable^WEVIL (case 52): Intel installation framework allows arbitrary code execution with escalation of privilege Stefan Kanthak (Jun 02)

The Gambler

Humax Digital HG100R multiple vulnerabilities The Gambler (Jun 30)

Tomi Tuominen

t2'17: Call For Papers 2017 (Helsinki, Finland) Tomi Tuominen (Jun 13)

Vulnerability Lab

Microsoft Skype v7.2, v7.35 & v7.36 - Stack Buffer Overflow Vulnerability Vulnerability Lab (Jun 26)
Composr CMS v10.0.0 - Cross Site Scripting Vulnerability Vulnerability Lab (Jun 12)
Xavier v2.4 PHP MP - SQL Injection Web Vulnerabilities Vulnerability Lab (Jun 07)
Perch v3.0.3 CMS - Multiple Web Vulnerabilities Vulnerability Lab (Jun 07)
Evolution Script CMS v5.3 - Cross Site Scripting Vulnerability Vulnerability Lab (Jun 12)
Zenbership 1.0.8 CMS - Multiple SQL Injection Vulnerabilities Vulnerability Lab (Jun 12)
PayPal Inc BB #149 - (Gift) Insufficient Authentication Vulnerability Vulnerability Lab (Jun 22)

Wester Zeng

Local file inclusion in cmsmadesimple <=2.2.1 Wester Zeng (Jun 29)

X41 D-Sec GmbH Advisories

X41-2017-005 - Multiple Vulnerabilities in peplink balance routers X41 D-Sec GmbH Advisories (Jun 06)

Previous period

Next period