273 messages starting Feb 11 14 and ending Feb 20 14 Date index | Thread index | Author index
Freepbx , php code execution exploit 0u7 5m4r7 (Feb 11) Freepbx 2.x , Command Execution vuln 0u7 5m4r7 (Feb 24)
Critical security flaws in Nagios NRPE client/server crypto Aaron Zauner (Feb 14)
CVE-2014-1213 - Denial of Service in Sophos Anti Virus advisories (Feb 02) CVE-2014-1214 - Remote Code Execution in Projoom NovaSFH Plugin advisories (Feb 07)
Bypass the Stop User Enumeration WordPress Plugin Andrew Horton (Feb 02)
Re: DoS via tables corruption in WordPress Andrew Nacin (Feb 11)
Re: DoS via tables corruption in WordPress Aris Adamantiadis (Feb 10) Re: DoS via tables corruption in WordPress Aris Adamantiadis (Feb 11) Re: DoS via tables corruption in WordPress Aris Adamantiadis (Feb 12)
Re: Ektron CMS TakeOver Part (2) - PaylPal-Forward.com demonstration Benji (Feb 05) Re: Hacking in Schools Benji (Feb 25)
CVE-2014-1610 description incorrect Brandon Perry (Feb 02) Barracuda Load Balancer Remote Authenticated Root Brandon Perry (Feb 12) CVE-2012-2627 not *really* fixed Brandon Perry (Feb 14) Re: Hacking in Schools Brandon Perry (Feb 25)
[Call for Papers] (And Call for Mentors) Proving Ground Speaker Development Program BSidesLV Info (Feb 12)
Recon 2014 Call For Papers - June 27-29, 2014 - Montreal, Quebec cfp2014 (Feb 17)
GrrCON 2014 CFP chris.payne (Feb 19)
Cisco Security Advisory: Cisco Firewall Services Module Cut-Through Proxy Denial of Service Vulnerability Cisco Systems Product Security Incident Response Team (Feb 19) Cisco Security Advisory: Multiple Vulnerabilities in Cisco IPS Software Cisco Systems Product Security Incident Response Team (Feb 19) Cisco Security Advisory: Cisco UCS Director Default Credentials Vulnerability Cisco Systems Product Security Incident Response Team (Feb 19) Cisco Security Advisory: Unauthorized Access Vulnerability in Cisco Unified SIP Phone 3905 Cisco Systems Product Security Incident Response Team (Feb 19) Cisco Security Advisory: Cisco Prime Infrastructure Command Execution Vulnerability Cisco Systems Product Security Incident Response Team (Feb 26)
CORE-2014-0001 - Publish-It Buffer Overflow Vulnerability CORE Advisories Team (Feb 05)
Re: Hacking in Schools Dan Ballance (Feb 26)
Re: Bank of the West security contact? Daniel Wood (Feb 08)
Re: Fwd: Re: Bank of the West security contact? doxingtheidiots (Feb 09)
Re: [CVE-2014-1860] PHP object insertion / possible RCE in Contao CMS <= 3.2.4 Egidio Romano (Feb 06) Re: [CVE-2014-1860] PHP object insertion / possible RCE in Contao CMS <= 3.2.4 Egidio Romano (Feb 07) Re: [CVE-2014-1860] PHP object insertion / possible RCE in Contao CMS <= 3.2.4 Egidio Romano (Feb 09)
[WooYun-2014-00049] Mac osx & ios Kernel Module Uninitialization En.wooyun.org (Feb 18)
[SECURITY] [DSA 2852-1] libgadu security update Florian Weimer (Feb 06) [SECURITY] [DSA 2856-1] libcommons-fileupload-java security update Florian Weimer (Feb 07)
[OT] pls ignore Gaurang Pandya (Feb 20)
OT 11.Feb.2014 declared 'The Day we Fight Back' against NSA et al Georgi Guninski (Feb 10) Re: OT 11.Feb.2014 declared 'The Day we Fight Back' against NSA et al Georgi Guninski (Feb 10) Re: OT 11.Feb.2014 declared 'The Day we Fight Back' against NSA et al Georgi Guninski (Feb 10) Re: MS 2k8 DNS server trivial DDoS contributor Georgi Guninski (Feb 25)
pMap v1.10 Gregory Pickett (Feb 04)
Re: [OT] pls ignore Gynvael Coldwind (Feb 24)
[HITB-Announce] Haxpo CFP Hafez Kamal (Feb 20)
Re: DoS via tables corruption in WordPress Harry Metcalfe (Feb 10) Re: DoS via tables corruption in WordPress Harry Metcalfe (Feb 12) Re: DoS via tables corruption in WordPress Harry Metcalfe (Feb 17) Three vulnerabilities in BP Group Documents 1.2.1 (WordPress plugin) Harry Metcalfe (Feb 18) Directory traversal in NextGEN Gallery 2.0.0 (WordPress plugin) Harry Metcalfe (Feb 18) A question for the list - WordPress plugin inspections Harry Metcalfe (Feb 19) Re: A question for the list - WordPress plugin inspections Harry Metcalfe (Feb 19) Re: A question for the list - WordPress plugin inspections Harry Metcalfe (Feb 20)
ASUS router drive-by code execution via XSS and authentication bypass Harry Sintonen (Feb 22)
Re: A question for the list - WordPress plugin inspections Henri Salo (Feb 20)
Re: Hacking in Schools Hinky Dink (Feb 25)
Multiple vulnerabilities in NETGEAR N300 WIRELESS ADSL2+ MODEM ROUTER DGN2200 Horton, Andrew (AU Melbourne) (Feb 12)
RC Trojan 1.1d (Undetected) ICSS Security (Feb 19) Re: RC Trojan 1.1d (Undetected) ICSS Security (Feb 20)
Apple SSL fail imipak (Feb 22)
[ISecAuditors Security Advisories] Multiple reflected XSS vulnerabilities in Atmail WebMail ISecAuditors Security Advisories (Feb 06) [ISecAuditors Security Advisories] - Reflected XSS vulnerability in Boxcryptor (www.boxcryptor.com) ISecAuditors Security Advisories (Feb 14)
Re: Bank of the West security contact? Jann Horn (Feb 08)
Re: Bank of the West security contact? Jeffrey Walton (Feb 08) Re: Bank of the West security contact? Jeffrey Walton (Feb 08) Re: Bank of the West security contact? Jeffrey Walton (Feb 08) Re: Bank of the West security contact? Jeffrey Walton (Feb 08) Re: Bank of the West security contact? Jeffrey Walton (Feb 08) Re: Bank of the West security contact? Jeffrey Walton (Feb 08) Re: Bank of the West security contact? Jeffrey Walton (Feb 08) Re: Bank of the West security contact? Jeffrey Walton (Feb 08) Re: Fwd: Re: Bank of the West security contact? Jeffrey Walton (Feb 09)
Re: DoS via tables corruption in WordPress jen140 (Feb 12)
Re: A question for the list - WordPress plugin inspections Jerome Athias (Feb 20) Re: A question for the list - WordPress plugin inspections Jerome Athias (Feb 20)
yahoo open redirect vulnerability full disclosur Jing Wang (Feb 12)
List Charter John Cartwright (Feb 12)
VideoCharge Studio v2.12.3.685 cc.dll CHTTPResponse::GetHttpResponse() Buffer Overflow Remote Code Execution Julien Ahrens (Feb 19)
Re: Bank of the West security contact? Justin Ferguson (Feb 08) Re: Bank of the West security contact? Justin Ferguson (Feb 08) Re: Bank of the West security contact? Justin Ferguson (Feb 08) Re: Bank of the West security contact? Justin Ferguson (Feb 08) Re: Bank of the West security contact? Justin Ferguson (Feb 08) Re: Bank of the West security contact? Justin Ferguson (Feb 08) Re: Bank of the West security contact? Justin Ferguson (Feb 08) Fwd: Re: Bank of the West security contact? Justin Ferguson (Feb 08) Fwd: Re: [CVE-2013-6986] Insecure Data Storage in Subway Ordering Justin Ferguson (Feb 08) Re: Fwd: Re: Bank of the West security contact? Justin Ferguson (Feb 09) Re: Fwd: Re: Bank of the West security contact? Justin Ferguson (Feb 09) Re: Fwd: Re: Bank of the West security contact? Justin Ferguson (Feb 09)
Happy chines new year kaveh ghaemmaghami (Feb 05) Fwd: Fwd: Re: [CVE-2013-6986] Insecure Data Storage in Subway Ordering kaveh ghaemmaghami (Feb 08)
Bank of the West security contact? Kristian Erik Hermansen (Feb 08) Re: extension for Firefox to force HTTPS always? Kristian Erik Hermansen (Feb 08)
[CVE-2014-1403] DOM XSS in EasyXDM 2.4.18 Krzysztof Kotowicz (Feb 02)
Persistent XSS in Media File Renamer V1.7.0 wordpress plugin Larry W. Cashdollar (Feb 24)
[SECURITY] [DSA 2853-1] horde3 security update Luciano Bello (Feb 06) [SECURITY] [DSA 2863-1] libtar security update Luciano Bello (Feb 19)
Re: [CVE-2014-1860] PHP object insertion / possible RCE in Contao CMS <= 3.2.4 Mario Vilas (Feb 07)
Various Vulnerabilities - SiteCore CMS / Mura CMS / Ektron CMS / SmarterMail / Yahoo / Paypal Mark Litchfield (Feb 04) Ektron CMS TakeOver Part (2) - PaylPal-Forward.com demonstration Mark Litchfield (Feb 04) Re: Ektron CMS TakeOver Part (2) - PaylPal-Forward.com demonstration Mark Litchfield (Feb 05) Re: Ektron CMS TakeOver Part (2) - PaylPal-Forward.com demonstration Mark Litchfield (Feb 05) Re: [SPAM] Re: Ektron CMS TakeOver Part (2) - PaylPal-Forward.com demonstration Mark Litchfield (Feb 05) Re: [SPAM] Re: Ektron CMS TakeOver Part (2) - PaylPal-Forward.com demonstration Mark Litchfield (Feb 05) Ebay, Inc Bug Bounty - GoStoreGo Administrative Authentication Bypass to all online stores Mark Litchfield (Feb 12) Shopify (Bug Bounty) - XML External Entity Vulnerability Mark Litchfield (Feb 17) Google XXE Vulnerability Mark Litchfield (Feb 21)
[SECURITY] CVE-2014-0050 Apache Commons FileUpload and Apache Tomcat DoS Mark Thomas (Feb 06) [SECURITY] CVE-2014-0033 Session fixation still possible with disableURLRewriting enabled Mark Thomas (Feb 25) [SECURITY] CVE-2013-4322 Incomplete fix for CVE-2012-3544 (Denial of Service) Mark Thomas (Feb 25) [SECURITY] CVE-2013-4286 Incomplete fix for CVE-2005-2090 (Information disclosure) Mark Thomas (Feb 25) [SECURITY] CVE-2013-4590 Information disclosure via XXE when running untrusted web applications Mark Thomas (Feb 25)
[CVE-2013-2055] Apache Wicket information disclosure vulnerability Martin Grigorov (Feb 06)
Information on recently-fixed Oracle VM VirtualBox vulnerabilities Matthew Daley (Feb 07)
temporary file creation vulnerability in Redis Matthew Hall (Feb 22)
0x07 SEC-T.org 2014 CALL FOR PAPERS Process Start Mattias Bååth (Feb 11) Re: 0x07 SEC-T.org 2014 CALL FOR PAPERS Process Start NEW CONFERENCE DATES! Mattias Bååth (Feb 18)
[SECURITY] [DSA 2862-1] chromium-browser security update Michael Gilbert (Feb 17)
Re: [OT] pls ignore Michal Zalewski (Feb 23)
Re: DoS via tables corruption in WordPress (Timothy Goddard) Mikhail A. Utin (Feb 12)
Re: [SECURITY] [DSA 2867-1] otrs2 security update Milan Berger (Feb 24)
[SECURITY] [DSA 2855-1] libav security update Moritz Muehlenhoff (Feb 05) [SECURITY] [DSA 2857-1] libspring-java security update Moritz Muehlenhoff (Feb 08) [SECURITY] [DSA 2858-1] iceweasel security update Moritz Muehlenhoff (Feb 10) [SECURITY] [DSA 2859-1] pidgin security update Moritz Muehlenhoff (Feb 10) [SECURITY] [DSA 2864-1] postgresql-8.4 security update Moritz Muehlenhoff (Feb 20) [SECURITY] [DSA 2865-1] postgresql-9.1 security update Moritz Muehlenhoff (Feb 20)
Work Practices of Cyber Security Professionals Muhammad Adnan (Feb 12)
Vulnerabilities in Contact Form 7 for WordPress MustLive (Feb 01) New vulnerabilities in Google Maps plugin for Joomla MustLive (Feb 07) DoS via tables corruption in WordPress MustLive (Feb 10) Re: DoS via tables corruption in WordPress MustLive (Feb 12) Re: DoS via tables corruption in WordPress MustLive (Feb 12) DAVOSET v.1.1.7 MustLive (Feb 13) XSS and CS vulnerabilities in DSMS MustLive (Feb 16) Re: DoS via tables corruption in WordPress MustLive (Feb 21) Multiple vulnerabilities in JoomLeague for Joomla MustLive (Feb 23) Multiple vulnerabilities in Joomla-Base MustLive (Feb 25)
Visa (Europe) XSS Vulnerability Nicholas Lemonias. (Feb 07) Sinopec Ltd. (XSS) Web App Vulnerabilities Nicholas Lemonias. (Feb 19) CISCO Systems Inc. Security Report, Web App Vulnerabilities (XSS) Nicholas Lemonias. (Feb 19) British Sky Broadcasting Corporation - Web App vulnerabilities (XSS) Nicholas Lemonias. (Feb 26) Web App Sec: (AT&T Corporation) former American Telecommunication & Telegraph Vulnerabilities (Cross-Site Scripting / OWASP Top 10) Nicholas Lemonias. (Feb 27)
RootedArena 2014: Information Omar Benbouazza (Feb 18)
Whonix Anonymous Operating System Version 8 Released! Patrick Schleizer (Feb 28)
Re: Hacking in Schools Paul Ammann (Feb 26)
MS 2k8 DNS server trivial DDoS contributor Pedro Luis Karrasquillo (Feb 25) Microsoft DNS server unwitting DDoS contributor Pedro Luis Karrasquillo (Feb 26)
[CVE-2014-1860] PHP object insertion / possible RCE in Contao CMS <= 3.2.4 Pedro Ribeiro (Feb 04) [CVE-2014-1836] Arbitrary file deletion in ImpressCMS < 1.3.6 and two XSS issues Pedro Ribeiro (Feb 04) [CVE-2014-2027] PHP objection insertion / arbitrary file deletion / possible RCE in egroupware <= 1.8.005 Pedro Ribeiro (Feb 20)
Re: [OT] pls ignore Pedro Worcel (Feb 21)
[CVE-2014-2069] 'eshtery CMS' allows remote attackers to read arbitrary files peng . deng (Feb 22)
Hacking in Schools Pete Herzog (Feb 25)
MediaWiki <= 1.22.1 PdfHandler Remote Code Execution Exploit (CVE-2014-1610) Pichaya Morimoto (Feb 02) Revision 1 (PoC added): MediaWiki <= 1.22.1 PdfHandler Remote Code Execution Exploit (CVE-2014-1610) Pichaya Morimoto (Feb 02)
CVE-2014-0053 Information Disclosure when using Grails Pivotal Security Team (Feb 19) Update: CVE-2014-0053 Information Disclosure when using Grails Pivotal Security Team (Feb 27)
CVE-2014-1221 - Local Code Execution in Dameware Mini Remote Control Portcullis Advisories (Feb 12) CVE-2014-1219 - Unauthenticated Privilege Escalation in CA 2E Web Option Portcullis Advisories (Feb 12) CVE-2013-1643 - Unauthorised Access To Other Users Email Messages in Symantec PGP Universal Web Messenger Portcullis Advisories (Feb 15) CVE-2014-1220 - Disclosure Of Database Credentials in IT2 Workstation Portcullis Advisories (Feb 15) CVE-2014-1215 - Local Code Execution in CoreFTP Core FTP Server Portcullis Advisories (Feb 19) CVE-2014-1223 - Cross-site Scripting in Telligent Evolution Portcullis Advisories (Feb 22)
Re: [SPAM] Re: Ektron CMS TakeOver Part (2) - PaylPal-Forward.com demonstration Randal T. Rioux (Feb 05)
[RT-SA-2014-001] McAfee ePolicy Orchestrator: XML External Entity Expansion in Dashboard RedTeam Pentesting GmbH (Feb 25)
Re: Apple SSL fail Reed Black (Feb 22)
Re: [OT] pls ignore Rick Olson (Feb 23)
Re: Freepbx , php code execution exploit Rob Thomas (Feb 12) Re: Freepbx 2.x , Command Execution vuln Rob Thomas (Feb 24)
H2HC 10 - FX Keynote Video is Up Rodrigo Rubira Branco (BSDaemon) (Feb 04)
Jetro Cockpit Secure Browsing vulnerability - remote code execution on all enterprise workstations simultaneously Ronen Z (Feb 02)
Re: yahoo open redirect vulnerability full disclosur Ronny Vasquez (Feb 14)
Router D-Link DIR-100 Multiple Vulnerabilities root (Feb 02)
Core FTP Server Vulnerabilities Rustein, Fara Denise (LATCO - Buenos Aires) (Feb 06) Titan FTP Server Directory Traversal Vulnerabilities - [CVE-2014-1841 / CVE-2014-1842 / CVE-2014-1843] Rustein, Fara Denise (LATCO - Buenos Aires) (Feb 11)
[SECURITY] [DSA 2851-1] drupal6 security update Salvatore Bonaccorso (Feb 02) [SECURITY] [DSA 2854-1] mumble security update Salvatore Bonaccorso (Feb 05) [SECURITY] [DSA 2860-1] parcimonie security update Salvatore Bonaccorso (Feb 11) [SECURITY] [DSA 2850-2] libyaml regression update Salvatore Bonaccorso (Feb 12) [SECURITY] [DSA 2861-1] file security update Salvatore Bonaccorso (Feb 16) [SECURITY] [DSA 2866-1] gnutls26 security update Salvatore Bonaccorso (Feb 22) [SECURITY] [DSA 2867-1] otrs2 security update Salvatore Bonaccorso (Feb 23)
Re: Hacking in Schools Sanguinarious Rose (Feb 26)
SEC Consult SA-20140218-0 :: Multiple critical vulnerabilities in Symantec Endpoint Protection SEC Consult Vulnerability Lab (Feb 18) SEC Consult SA-20140227-0 :: Local Buffer Overflow vulnerability in SAS for Windows (Statistical Analysis System) SEC Consult Vulnerability Lab (Feb 27) SEC Consult SA-20140228-0 :: Privilege escalation vulnerability in MICROSENS Profi Line Modular Industrial Switch SEC Consult Vulnerability Lab (Feb 28) SEC Consult SA-20140228-1 :: Authentication bypass (SSRF) and local file disclosure in Plex Media Server SEC Consult Vulnerability Lab (Feb 28)
[ MDVSA-2014:025 ] pidgin security (Feb 11) [ MDVSA-2014:026 ] openldap security (Feb 12) [ MDVSA-2014:027 ] php security (Feb 12) [ MDVSA-2014:028 ] mariadb security (Feb 13) [ MDVSA-2014:029 ] mysql security (Feb 13) [ MDVSA-2014:031 ] drupal security (Feb 14) [ MDVSA-2014:032 ] flite security (Feb 14) [ MDVSA-2014:033 ] socat security (Feb 14) [ MDVSA-2014:034 ] yaml security (Feb 14) [ MDVSA-2014:035 ] libpng security (Feb 17) [ MDVSA-2014:036 ] varnish security (Feb 17) [ MDVSA-2014:037 ] ffmpeg security (Feb 17) [ MDVSA-2014:038 ] kernel security (Feb 17) [ MDVSA-2014:039 ] libgadu security (Feb 18) [ MDVSA-2014:040 ] puppet security (Feb 18) [ MDVSA-2014:041 ] python security (Feb 19) [ MDVSA-2014:042 ] tomcat6 security (Feb 19) [ MDVSA-2014:043 ] gnutls security (Feb 19) [ MDVSA-2014:044 ] zarafa security (Feb 19) [ MDVSA-2014:045 ] libtar security (Feb 20) [ MDVSA-2014:046 ] phpmyadmin security (Feb 21) [ MDVSA-2014:047 ] postgresql security (Feb 21)
Re: Ektron CMS TakeOver Part (2) - PaylPal-Forward.com demonstration security curmudgeon (Feb 05) Re: Ektron CMS TakeOver Part (2) - PaylPal-Forward.com demonstration security curmudgeon (Feb 05) Re: Ektron CMS TakeOver Part (2) - PaylPal-Forward.com demonstration security curmudgeon (Feb 05)
[Security-news] SA-CONTRIB-2014-009 - Tagadelic - Information Disclosure security-news (Feb 05) [Security-news] SA-CONTRIB-2014-010 Services - Access Bypass and Privilege Escalation security-news (Feb 05) [Security-news] SA-CONTRIB-2014-011 - Push Notifications - Information Disclosure security-news (Feb 05) [Security-news] SA-CONTRIB-2014-012- Modal Frame API - Cross Site Scripting (XSS) security-news (Feb 05) [Security-news] SA-CONTRIB-2014-014 - Webform Validation - Cross Site Scripting (XSS) security-news (Feb 12) [Security-news] SA-CONTRIB-2014-013- Chaos tool suite (ctools) - Access Bypass security-news (Feb 12) [Security-news] SA-CONTRIB-2014-015 - FileField - Access Bypass security-news (Feb 12) [Security-news] SA-CONTRIB-2014-016 - Mayo Theme - XSS Vulnerability security-news (Feb 12) [Security-news] SA-CONTRIB-2014-017- Image Resize Filter - Denial of Service (DOS) security-news (Feb 12) [Security-news] SA-CONTRIB-2014-020 - Drupal Commons - Cross Site Scripting (XSS) security-news (Feb 12) [Security-news] SA-CONTRIB-2014-018 - Webform - Cross Site Scripting (XSS) security-news (Feb 12) [Security-news] SA-CONTRIB-2014-019 - Easy Social - Cross Site Scripting (XSS) security-news (Feb 12) [Security-news] SA-CONTRIB-2014-021 - Maestro - Cross Site Scripting (XSS) security-news (Feb 19) [Security-news] SA-CONTRIB-2014-022 - Slickgrid - Access bypass security-news (Feb 19) [Security-news] SA-CONTRIB-2014-023 - Project Issue File Review - XSS security-news (Feb 26) [Security-news] SA-CONTRIB-2014-025 - Open Omega - Access Bypass security-news (Feb 26) [Security-news] SA-CONTRIB-2014-024 - Content Lock - CSRF security-news (Feb 26) [Security-news] SA-CONTRIB-2014-026 - Mime Mail - Access bypass security-news (Feb 26)
Re: A question for the list - WordPress plugin inspections Seth Arnold (Feb 19)
[Benchmark 2014] WAVSEP Vulnerability Scanner Benchmark 2013/2014 Shay Chen (Feb 12)
My experiences with the GiftCards.com Bug Bounty Program Stefan Schurtz (Feb 18)
CVE-2014-1237 (XSS in i-doit Pro) Stephan Rickauer (Feb 05) SQL Injection i-doit Pro (CVE-2014-1597) Stephan Rickauer (Feb 17)
44CON 2014 September 11th - 12th CFP Steve (Feb 21)
Re: A question for the list - WordPress plugin inspections Thomas MacKenzie (Feb 19)
Re: CVE-2013-1643 - Unauthorised Access To Other Users Email Messages in Symantec PGP Universal Web Messenger Tim Brown (Feb 18)
Re: DoS via tables corruption in WordPress Timothy Goddard (Feb 12)
DC4420 meeting Tuesday, 25th February 2014 Tony Naggs (Feb 21)
Re: [OT] pls ignore Trevor Bergeron (Feb 22)
TWSL2014-003: Blind SQL Injection Vulnerability in Tableau Server Trustwave Advisories (Feb 11)
German Telekom Bug Bounty #9 - Code Execution Vulnerability Vulnerability Lab (Feb 06) German Telekom Bug Bounty #10 - Arbitrary File Upload Vulnerability Vulnerability Lab (Feb 06) German Telekom Bug Bounty #11 - Remote SQL Injection Vulnerability Vulnerability Lab (Feb 06) gpEasy v4.3.x CMS - Multiple Web Vulnerabilities Vulnerability Lab (Feb 07) Facebook Bug Bounty #12 - Client Side Exception Web Vulnerability Vulnerability Lab (Feb 07) WiFi Camera Roll v1.2 iOS - Multiple Web Vulnerabilities Vulnerability Lab (Feb 11) jDisk (stickto) v2.0.3 iOS - Multiple Web Vulnerabilities Vulnerability Lab (Feb 12) Office Assistant Pro v2.2.2 iOS - File Include Vulnerability Vulnerability Lab (Feb 15) mbDriveHD v1.0.7 iOS - Multiple Web Vulnerabilities Vulnerability Lab (Feb 15) File Hub v1.9.1 iOS - Multiple Web Vulnerabilities Vulnerability Lab (Feb 15) My PDF Creator & DE DM v1.4 iOS - Multiple Vulnerabilities Vulnerability Lab (Feb 17) Barracuda Message Archiver 650 - Persistent Web Vulnerability Vulnerability Lab (Feb 19) Barracuda Bug Bounty #30 Firewall - Multiple Persistent Web Vulnerabilities Vulnerability Lab (Feb 20) Barracuda Bug Bounty #36 Firewall - Client Side Exception Handling Web Vulnerability Vulnerability Lab (Feb 21) CNNVD Gov CN #1 - Filter Bypass & Persistent Web Vulnerability Vulnerability Lab (Feb 21) Barracuda Networks Bug Bounty #35 - Persistent Web Vulnerability Vulnerability Lab (Feb 24) JORJWEB Ltda (all versions) - SQL Injection Vulnerability Vulnerability Lab (Feb 24) WiFiles HD v1.3 iOS - File Include Web Vulnerability Vulnerability Lab (Feb 24) Barracuda Networks Firewall Bug Bounty #32 - Filter Bypass & Persistent Web Vulnerabilities Vulnerability Lab (Feb 25) Private Camera Pro v5.0 iOS - Multiple Web Vulnerabilities Vulnerability Lab (Feb 25) Barracuda Networks Bug Bounty #31 Firewall - Persistent Access Policy Vulnerability Vulnerability Lab (Feb 26) Barracuda Networks Backup Appliance Application - Persistent Web Vulnerability Vulnerability Lab (Feb 26) Bluetooth Photo Share Pro v2.0 iOS - Multiple Vulnerabilities Vulnerability Lab (Feb 27) Telekom Bug Bounty #12 - File Include Web Vulnerability Vulnerability Lab (Feb 27) Microsoft Office 365 Outlook - Filter Bypass & Persistent Editor Vulnerability Vulnerability Lab (Feb 28)
XSS Reflected vulnerabilities in OS of FortiWeb v 5.0.3 (CVE-2013-7181) William Costa (Feb 04) Fortinet FortiOS 5.0.5 contains a reflected cross-site scripting (XSS) vulnerability ( CVE-2013-7182) William Costa (Feb 04) Reflected XSS Attacks vulnerabilities in Symantec WEB Gateway 5.1.1.24 (CVE-2013-5013) William Costa (Feb 11) Reflected XSS Attacks vulnerabilities in DELL SonicWALL Universal Management Suite v7.1 (CVE-2014-0332) William Costa (Feb 12)
Re: CVE-2014-1219 - Unauthenticated Privilege Escalation in CA 2E Web Option Williams, James K (Feb 14) CA20140218-01: Security Notice for CA 2E Web Option Williams, James K (Feb 19)
Re: RC Trojan 1.1d (Undetected) Źmicier Januszkiewicz (Feb 20)
RSS Feed
About List
All Lists
Previous period