Full Disclosure: by date
RSS Feed
About List
All Lists
Previous period
97 messages
starting Mar 03 16 and
ending Mar 31 16
Date index |
Thread index |
Author index
Thursday, 03 March
Vipps by DNB for Android - cryptographic vulnerabilities alendal
Browser Security Tool: HTTPS Only 2.1 (Major Release, Open Source, Python) David Leo
Panda SM Manager iOS Application - MITM SSL Certificate Vulnerability David Coomber
Shakacon 2016 CFP - July 11-14 / Hawaii Jonathan Brossard
WAGO IO PLC 758-870, 750-849, 750-849 vulnerabilities Karn Ganeshen
Schneider Electric Building Operation Automation Server Multiple Vulnerabilities Karn Ganeshen
[REVIVE-SA-2016-001] Revive Adserver - Multiple vulnerabilities Matteo Beccati
CVE Request: Fiyo CMS 2.0.6.1 - Multiple XSS Vulnerabilities Himanshu Mehta
Vulnerabilities in Mobile Safari MustLive
[CFP] EuskalHack (San Sebastian / Donostia) 2016 Ryan Dewhurst
Hacking Magento eCommerce For Fun And 17.000 USD Egidio Romano
Hacking Magento eCommerce For Fun And 17.000 USD Egidio Romano
Friday, 04 March
Executable installers are vulnerable^WEVIL (case 29): putty-0.66-installer.exe allowa arbitrary (remote) code execution WITH escalation of privilege Stefan Kanthak
McAfee VirusScan Enterprise security restrictions bypass Agazzini Maurizio
Re: Netgear GS105Ev2 - Multiple Vulnerabilities Nick Boyce
Monday, 07 March
Apple iOS v9.2.1 - Multiple PassCode Bypass Vulnerabilities (App Store Link, Buy Tones Link & Weather Channel Link) Vulnerability Lab
Tuesday, 08 March
Windows Mail Find People DLL side loading vulnerability Securify B.V.
LSE Leading Security Experts GmbH - LSE-2016-01-01 - Wordpress ProjectTheme - Multiple Vulnerabilities LSE-Advisories
Wednesday, 09 March
Re: Windows Mail Find People DLL side loading vulnerability Securify B.V.
[CORE-2016-0003] - Samsung SW Update Tool MiTM CORE Advisories Team
[CORE-2016-0004] - SAP Download Manager Password Weak Encryption CORE Advisories Team
Advisory X41-2016-001: Memory Corruption Vulnerability in "libotr" X41 D-Sec GmbH Advisories
CVE-2016-2563 - PuTTY/PSCP <=0.66 buffer overflow - vuln-pscp-sink-sscanf oststrom (public)
New Security Tool: MrLooquer - IPv6 Intelligence Rafa Sanchez
Thomson TWG850 Wireless Router Multiple Vulnerabilities Sebastian Perez
Re: Netgear GS105Ev2 - Multiple Vulnerabilities Benedikt Westermann
Security contact @ Gigabyte Gustavo Sorondo
Open Vulnerablity ID tracker instead of CVE. Maybe op7ic \x00
Re: Windows Mail Find People DLL side loading vulnerability Stefan Kanthak
Executable installers are vulnerable^WEVIL (case 30): clamwin-0.99-setup.exe allows arbitrary (remote) code execution WITH escalation of privilege Stefan Kanthak
Executable installers are vulnerable^WEVIL (case 31): MalwareBytes' installers allows arbitrary (remote) code execution WITH escalation of privilege Stefan Kanthak
[SE-2012-01] Broken security fix in Oracle Java SE 7/8/9 Security Explorations
Saturday, 12 March
Exim < 4.86.2 Local Root Privilege Escalation Dawid Golunski
Kaltura Community Edition Multiple Vulnerabilities Daniel Jensen
Netgear ReadyNAS Surveillance: Unauthenticated Remote Command Execution Sysdream Labs
Wordpress Configuration Error on XDA-Developers.com led to full Web-Server Access and shut down website Steffen Rogge
Microsoft Edge CDOMTextNode::get_data type confusion Berend-Jan Wever
Re: Security contact @ Gigabyte Mustafa Al-Bassam
Monday, 14 March
Chamlio LMS v1.10.2 - (Profile) Persistent Web Vulnerability Vulnerability Lab
ChitaSoft (Web-Application) - SQL Injection Vulnerability Vulnerability Lab
Yahoo Bug Bounty #37 - Sender Spoofing Vulnerability Vulnerability Lab
Re: Exim < 4.86.2 Local Root Privilege Escalation loon
Re: Security contact @ Gigabyte Andrew Deck
Re: Exim < 4.86.2 Local Root Privilege Escalation Dawid Golunski
Re: Exim < 4.86.2 Local Root Privilege Escalation loon
Releasing Mobile Security Framework (MobSF) v0.9 Ajin Abraham
CVE-2016-3115 - OpenSSH <=7.2p1 xauth injection INTREST SEC
CVE-2016-3116 - Dropbear SSH xauth injection INTREST SEC
Netgear CG3000 modem/router set password vulnerability paul . szabo
Latest Tegile security updates include tomcat examples package containing many security flaws. Jesse Jacobs
Re: Security contact @ Gigabyte Jeffrey Walton
Re: Security contact @ Gigabyte Fyodor
Re: Security contact @ Gigabyte Gustavo Sorondo
Re: Security contact @ Gigabyte Jeffrey Walton
[CFP] BSides Las Vegas Genevieve Southwick
Tuesday, 15 March
NEW VMSA-2016-0003 - VMware vRealize Automation and vRealize Business Advanced and Enterprise address Cross-Site Scripting (XSS) issues VMware Security Response Center
Wednesday, 16 March
[CORE-2016-0005] - FreeBSD Kernel amd64_set_ldt Heap Overflow CORE Advisories Team
Thursday, 17 March
OWASP AppSec USA 2016 Call for Papers Released Weidenhamer, Andrew
Zenphoto 1.4.11: RFI Curesec Research Team (CRT)
PivotX 2.3.11: Reflected XSS Curesec Research Team (CRT)
PivotX 2.3.11: Directory Traversal Curesec Research Team (CRT)
PivotX 2.3.11: Code Execution Curesec Research Team (CRT)
BigTree 4.2.8: Object Injection & Improper Filename Sanitation Curesec Research Team (CRT)
Defense in depth -- the Microsoft way (part 39): vulnerabilities, please meet the bar for security servicing Stefan Kanthak
WordPress Bulletproof Security Plugin Multiple Cross Site Scripting Vulnerabilities Sachin Wagh
server and client side remote code execution through a buffer overflow in all git versions before 2.7.1 (unpublished ᴄᴠᴇ-2016-2324 and ᴄᴠᴇ‑2016‑2315) Laël Cellier
New Security Tool: Enteletaor - Broker & MQ Injection tool cr0hn
Re: [CORE-2016-0005] - FreeBSD Kernel amd64_set_ldt Heap Overflow jungle Boogie
Sunday, 20 March
FortiOS (Fortinet) - Open Redirect and Cross Site Scripting Javier Nieto
Re: server and client side remote code execution through a buffer overflow in all git versions before 2.7.1 (unpublished ᴄᴠᴇ-2016-2324 and ᴄᴠᴇ‑2016‑2315) Laël Cellier
AsusTEK asio.sys unsafe operation 0x3d5157636b525761 iddqd
Netgear DGNv2200 multiple vulnerabilities (Bezeq firmware) 0x3d5157636b525761 iddqd
DORG - Disc Organization System SQL Injection And Cross Site Scripting SECUPENT Research Center
A novel persistent injection to Windows machines 0x3d5157636b525761 iddqd
Achievo Cross Site Scripting vulnerability SECUPENT Research Center
Tuesday, 22 March
[RT-SA-2016-002] Cross-site Scripting in Securimage 3.6.2 RedTeam Pentesting GmbH
Wednesday, 23 March
Executable installers are vulnerable^WEVIL (case 32): Comodo's installers allow arbitrary (remote) code execution WITH escalation of privilege Stefan Kanthak
HTTPS Only 3.1 (Detailed Analysis, Browser Security, Open Source, Python) David Leo
Remote Code Execution in DVR affecting over 70 different vendors rotem kerner
Facebook Messenger (iOS) Certificate Validation Vulnerability Sean Wright
APPLE-SA-2016-03-21-1 iOS 9.3 Apple Product Security
APPLE-SA-2016-03-21-2 watchOS 2.2 Apple Product Security
APPLE-SA-2016-03-21-3 tvOS 9.2 Apple Product Security
APPLE-SA-2016-03-21-4 Xcode 7.3 Apple Product Security
APPLE-SA-2016-03-21-5 OS X El Capitan 10.11.4 and Security Update 2016-002 Apple Product Security
APPLE-SA-2016-03-21-6 Safari 9.1 Apple Product Security
APPLE-SA-2016-03-21-7 OS X Server 5.1 Apple Product Security
Wednesday, 30 March
PayPal Bug Bounty #121 - (Profile) Filter Bypass & Persistent Web Vulnerability Vulnerability Lab
Thursday, 31 March
Patron Info System - SQL Injection Vulnerability Vulnerability Lab
Hi Technology & Services CMS - SQL Injection Vulnerabilities Vulnerability Lab
WP External Links v1.80 - Cross Site Scripting Web Vulnerabilities Vulnerability Lab
Docker UI v0.10.0 - Multiple Client Side Cross Site Request Forgery Web Vulnerabilities Vulnerability Lab
Docker UI v0.10.0 - Multiple Persistent Vulnerabilities Vulnerability Lab
Cades (2016Q1) - (id) Multiple SQL Injection Vulnerabilities Vulnerability Lab
Dorsa Web CMS - Multiple SQL Injection Vulnerabilities Vulnerability Lab
Trend Micro (SSO) - (Backend) SSO Redirect & Session Vulnerability Vulnerability Lab
Python v2.7 v1.5.4 iOS - Filter Bypass & Persistent Vulnerability Vulnerability Lab