Full Disclosure: by date
RSS Feed
About List
All Lists
Previous period
63 messages
starting Apr 03 20 and
ending Apr 30 20
Date index |
Thread index |
Author index
Friday, 03 April
Recon-Informer v1 - Intel for offensive systems tool. hyp3rlinx
MicroStrategy Intelligence Server and Web 10.4 - multiple vulnerabilities Red Timmy Security
Monday, 06 April
Microsoft Windows "net use" Logon CMD / Insufficient Password Prompt hyp3rlinx
Tuesday, 07 April
SEC Consult SA-20200407-0 :: Multiple XSS vulnerabilities in TAO Open Source Assessment Platform SEC Consult Vulnerability Lab
Friday, 10 April
netABuse - Windows Insufficient Authentication Logic Scanner hyp3rlinx
Re: TP-LINK Cloud Cameras NCXXX Remote NULL Pointer Dereference Pietro Oliva
Monday, 13 April
KL-001-2020-001 : Cellebrite Hardcoded ADB Authentication Keys KoreLogic Disclosures via Fulldisclosure
Tuesday, 14 April
Re: Two vulnerabilities found in MikroTik's RouterOS Q C
Workspace Management 9.1.2.2765 - Stored Cross-Site Scripting Georg Ph E Heise via Fulldisclosure
Matrix42 Workspace Management 9.1.2.2765 – Reflected Cross-Site Scripting Georg Ph E Heise via Fulldisclosure
Matrix42 Workspace Management 9.1.2.2765 – Reflected Cross-Site Scripting Georg Ph E Heise via Fulldisclosure
WSO2 API Manager Stored XSS Vulnerabilty raki ben hamouda
Defense in depth -- the Microsoft way (part 67): we maintain 20 year old bugs since we don't care about our customers safety and security Stefan Kanthak
Wednesday, 15 April
DedeCMS v7.5 SP2 - Multiple Cross Site Scripting Web Vulnerabilities Vulnerability Lab
DedeCMS v7.5 SP2 - Multiple Persistent Web Vulnerabilities Vulnerability Lab
Macs Framework v1.14f CMS - Multiple Web Vulnerabilities Vulnerability Lab
SeedDMS v5.1.18 - Multiple Persistent Web Vulnerabilities Vulnerability Lab
SuperBackup v2.0.5 iOS - (VCF) Persistent XSS Vulnerability Vulnerability Lab
File Transfer iFamily v2.1 - Directory Traversal Vulnerability Vulnerability Lab
AirDisk Pro v5.5.3 iOS - Multiple Persistent Vulnerabilities Vulnerability Lab
Bundeswehr Karriere Portal - Cross Site Scripting Vulnerability Vulnerability Lab
Friday, 17 April
TAO Open Source Assessment Platform v3.3.0 RC02 - Multiple Web Vulnerabilities Vulnerability Lab
SMACom v1.2.0 - Insecure Session Validation Vulnerability Vulnerability Lab
Playable v9.18 iOS - Multiple Web Vulnerabilities Vulnerability Lab
CA20200414-01: Security Notice for CA API Developer Portal Ken Williams via Fulldisclosure
CVE-2020-2771, CVE-2020-2851, CVE-2020-2944 - Multiple vulnerabilities in Oracle Solaris Marco Ivaldi
Prestashop <= 1.7.6.4 Multiple Vulnerabilities - CSRF to RCE Sivanesh Ashok
Swift File Transfer Mobile - Multiple Web Vulnerabilities Vulnerability Lab
Fork CMS v5.8.0 - Multiple Persistent Web Vulnerbilities Vulnerability Lab
Monday, 20 April
Phpgurukul User Registration v2.0 - Multiple Vulnerabilities Vulnerability Lab
Folder Lock v3.4.5 iOS - Multiple Web Vulnerabilities Vulnerability Lab
Tuesday, 21 April
Mahara v19.10.2 CMS - Persistent Cross Site Scripting Web Vulnerability Vulnerability Lab
Sky File v2.1.0 iOS - Multiple Web Vulnerabilities Vulnerability Lab
Multiple 0 day vulnerabilities in IBM Data Risk Manager Pedro Ribeiro
Unauthorized access to QRadar configuration sets via default password Securify B.V. via Fulldisclosure
QRadar RssFeedItem Server-Side Request Forgery vulnerability Securify B.V. via Fulldisclosure
Cross-Site Request Forgery & weak access control in QRadar ConfigServices webservice Securify B.V. via Fulldisclosure
Reflected Cross-Site Scripting in QRadar Forensics link analysis page Securify B.V. via Fulldisclosure
Local privilege escalation in QRadar due to run-result-reader.sh insecure file permissions Securify B.V. via Fulldisclosure
PHP object injection vulnerability in QRadar Forensics web application Securify B.V. via Fulldisclosure
Arbitrary class instantiation & local file inclusion vulnerability in QRadar Forensics web application Securify B.V. via Fulldisclosure
Authorization bypass in QRadar Forensics web application Securify B.V. via Fulldisclosure
QRadar session manager path traversal vulnerability Securify B.V. via Fulldisclosure
Cisco AnyConnect elevation of privileges due to insecure handling of path names Securify B.V. via Fulldisclosure
Web Application Firewall bypass via F5 Big-IP partial URI decoding RedTimmy Security
Friday, 24 April
Air Sender v1.0.2 iOS - Arbitrary File Upload Vulnerability Vulnerability Lab
jQuery < 3.5 Cross-Site Scripting (XSS) Marcin Kozlowski
Tuesday, 28 April
Project Open v5.0.3 CMS - Multiple Web Vulnerabilities Vulnerability Lab
POS PHP v17.5 - Persistent Cross Site Web Vulnerability Vulnerability Lab
Easy Transfer v1.7 iOS - Multiple Web Vulnerabilities Vulnerability Lab
File Sharing & Chat v1.0 iOS - Denial of Service Vulnerability Vulnerability Lab
Transfer Master v3.3 iOS - Denial of Service Vulnerability Vulnerability Lab
File Explorer v1.4 iOS - Information Disclosure Vulnerability Vulnerability Lab
Internet Download Manager v6.37.11.1 - Stack Buffer Overflow Vulnerabilities Vulnerability Lab
Cross-Site Scripting Vulnerability in Geeklog 2.2.1 Daniel Bishtawi
Blind SQL Injection Vulnerability in Geeklog 2.2.1 Daniel Bishtawi
Gigamon - GigaVUE 0day Balázs Hambalkó
Multiple vulnerabilities OpenAudiT Pablo Zurro via Fulldisclosure
Exploiting java deserialization vulnerabilities in crypto contexts - a java applet case-study RedTimmy Security
Wednesday, 29 April
IDM v6.37.11.1 - Stack Buffer Overflow Vulnerabilities Vulnerability Lab
Thursday, 30 April
HardDrive v2.1 iOS - Arbitrary File Upload Vulnerability Vulnerability Lab
Super Backup v2.0.5 iOS - Directory Traversal Vulnerability Vulnerability Lab
Advanced Persistent Threat Golden_hands - Digital Bank Robbery of the Year 2020 Vulnerability Lab