Full Disclosure: by date
RSS Feed
About List
All Lists
Previous period
93 messages
starting Apr 04 16 and
ending Apr 29 16
Date index |
Thread index |
Author index
Monday, 04 April
Wordpress Scoreme Theme - Client Side Cross Site Scripting Web Vulnerability Vulnerability Lab
Techsoft Web Solutions CMS 2016 Q2 - SQL Injection Web Vulnerability Vulnerability Lab
FortiManager & FortiAnalyzer 5.x (Appliance Application) - (filename) Persistent Web Vulnerability Vulnerability Lab
[SE-2012-01] Broken security fix in IBM Java 7/8 Security Explorations
[CVE-2016-3659]Cacti graph_view.php SQL Injection Vulnerability xiaotian.wang () dbappsecurity com cn
DotCMS injection Vulnerability p0x2015
Daily Edition theme for WordPress MustLive
APPLE-SA-2016-03-31-1 iBooks Author 2.4.1 Apple Product Security
Unauthenticated CSRF reboot flaw in ARRIS (Motorola) SURFboard modems David Longenecker
Daily Edition theme for WordPress MustLive
Multiple vulnerabilities found in Quanta LTE routers (backdoor, backdoor accounts, RCE, weak WPS ...) Pierre Kim
SQL Injection Vulnerability in DotCms v3.3 xiong piaox
MeshCMS Command Execution Vulnerability xiong piaox
Pulse CMS Multiple Vulnerabilities xiong piaox
ManageEngine Password Manager Pro Multiple Vulnerabilities Sebastian Perez
CVE-2016-2191: optipng: invalid write Hans Jerry Illikainen
Reprint your I$ACA CPE's using Burp Suite! ( the no refund addition ! ) robert mccurdy
Tradukka affected by Cross-Site Scripting Francisco Javier Santiago Vázquez
Bitcoin/Altcoin Stratum Pool Mass Duplicate Shares Exploit exploits4coins.com 2
Tuesday, 05 April
Apple iOS 9.3.1 (iPhone 6S & iPhone Plus) - (3D Touch) Passcode Bypass Vulnerability Vulnerability Lab
Re: [SE-2012-01] Broken security fix in IBM Java 7/8 Security Explorations
Wednesday, 06 April
MeshCMS 3.6 – Multiple vulnerabilities xiong piaox
Fireware XTM Web UI - Open Redirect Manuel Mancera
hardwear.io CFP 2016 - Hardware Security Conference Call for Papers Hardwear Team
Panda Security Multiple Business Products - Privilege Escalation Kyriakos Economou
Panda Security 2016 Home User Products - Privilege Escalation Kyriakos Economou
CVE-2016-3672 - Unlimiting the stack not longer disables ASLR Hector Marco-Gisbert
Check out faraday v1.0.18! New CLI mode, Jira support & bug fixes! Francisco Amato
Thursday, 07 April
Techsoft WS CMS (2016 Q2) - SQL Injection Web Vulnerability Vulnerability Lab
Virtual Freer v1.58 - Client Side Cross Site Scripting Vulnerability Vulnerability Lab
Quicksilver HQ VoHo Concept4E CMS v1.0 - Multiple SQL Injection Web Vulnerabilities Vulnerability Lab
Eight Webcom CMS (2016 Q2) - SQL Injection Vulnerability Vulnerability Lab
Perli v2.6 iOS - Filter Bypass & Persistent Vulnerability Vulnerability Lab
Monsta Box WebFTP 1.8.2 and below arbitrary file read and path traversal vulnerabilities Imre RAD
Friday, 08 April
AccelSite Content Manager v1.0 - SQL Injection Vulnerability Vulnerability Lab
WP Multiple Meta Box v1.0 - SQL Injection Vulnerability Vulnerability Lab
[CVE-2016-3972]DotCMS Directory traversal vulnerability xiong piaox
[CVE-2016-3971]DotCMS xss vulnerability xiong piaox
Blind SQL injections in CivicRM Simon Waters (Surevine)
Express Zip <= 2.40 Path Traversal Rio Sherri
Saturday, 09 April
end of useable crypto in browsers? Árpád Magosányi
Tuesday, 12 April
Wordpress Robo Gallery v2.0.14 - Code Execution Vulnerability Vulnerability Lab
.NET Framework 4.6 allows side loading of Windows API Set DLL Securify B.V.
[SE-2012-01] Yet another broken security fix in IBM Java 7/8 Security Explorations
Wednesday, 13 April
Webline CMS (2016Q2) - SQL Injection Vulnerability Vulnerability Lab
Thursday, 14 April
Django CMS v3.2.3 - Filter Bypass & Persistent Vulnerability Vulnerability Lab
DAVOSET v.1.2.8 MustLive
Re: end of useable crypto in browsers? Seth Arnold
Re: end of useable crypto in browsers? Sebastian
Re: end of useable crypto in browsers? Árpád Magosányi
Re: end of useable crypto in browsers? Sebastian
Call for Papers for 4th Balkan Computer Congress – BalCCon2k16 Milos Krasojevic
AST-2016-004: Long Contact URIs in REGISTER requests can crash Asterisk Asterisk Security Team
AST-2016-005: TCP denial of service in PJProject Asterisk Security Team
Friday, 15 April
Re: end of useable crypto in browsers? Reindl Harald
Re: end of useable crypto in browsers? Sebastian
Re: end of useable crypto in browsers? Tony Arcieri
PfSense Community Edition Multiple Vulnerabilities Francesco Oddo
[ERPSCAN-16-001] SAP NetWeaver 7.4 - XSS vulnerability ERPScan inc
[ERPSCAN-16-002] SAP HANA - log injection and no size restriction ERPScan inc
Saturday, 16 April
[ERPSCAN-16-003] SAP NetWeaver 7.4 - cryptographic issues ERPScan inc
Microsoft Internet Explorer 11 MSHTML.DLL Remote Binary Planting Vulnerability Sandro Poppi
Announcing NorthSec 2016 - Montreal, May 19-22 Pierre-David / NorthSec Conference
Wednesday, 20 April
Executable installers are vulnerable^WEVIL (case 33): GData's installers allow escalation of privilege Stefan Kanthak
[ERPSCAN-16-004] SAP NetWeaver 7.4 (Pmitest servlet) – XSS vulnerability ERPScan inc
[ERPSCAN-16-005] SAP HANA hdbxsengine JSON – DoS vulnerability ERPScan inc
Multiple Reflected XSS vulnerabilities in Oliver (formerly Webshare) v1.3.1 research () rv3lab org
Lock Browser 5.3 (Browser Security, Open Source, Python) David Leo
Avast SandBox Escape via IOCTL Requests Kyriakos Economou
Thursday, 21 April
Time-based SQL Injection in Admin panel ImpressCMS <= v1.3.9 Manuel Garcia Cardenas
Wordpress iThemes Security (Better WP Security) Insecure Backup/Logfile Generation (access rights) Sysdream Labs
Wordpress iThemes Security (Better WP Security) Insecure Backup/Logfile Generation (predicatable filename) Sysdream Labs
CVE-2016-3074: libgd: signedness vulnerability Hans Jerry Illikainen
Friday, 22 April
SEC Consult SA-20160422-0 :: Insecure credential storage in my devolo Android app SEC Consult Vulnerability Lab
SEC Consult SA-20160422-1 :: Multiple vulnerabilities in Digitalstrom Konfigurator SEC Consult Vulnerability Lab
Monday, 25 April
C & C++ for OS - Filter Bypass & Persistent Vulnerability Vulnerability Lab
Totemomail v4.x & v5.x - Filter Bypass & Persistent Vulnerability Vulnerability Lab
UBNT Bug Bounty #2 - XML External Entity Vulnerability Vulnerability Lab
Cyberoam Central Console v02.03.1 - Multiple Persistent Vulnerabilities Vulnerability Lab
Django CMS v3.2.3 - Filter Bypass & Persistent Vulnerability Vulnerability Lab
Negin Group CMS - (v) Multiple Web Vulnerabilities Vulnerability Lab
Tuesday, 26 April
VoipNow v4.0.1 - (xajax_handler) Persistent Vulnerability Vulnerability Lab
Trend Micro (Account) - Email Spoofing Web Vulnerability Vulnerability Lab
Sophos XG Firewall (SF01V) - Persistent Web Vulnerability Vulnerability Lab
Remote Code Execution in Shopware <5.1.5 (CVE-2016-3109) David Vieira-Kurz
[CFP] GreHack 2016 Paget Philippe
Request For Comment: Possible Flaw of Bypassing CAPTCHA in AWS Login? David Leo
Multiple Vulnerabilities in Voo branded Netgear CG3700b dev
Wednesday, 27 April
Oracle Discoverer Viewer BI - Open Redirect Vulnerability Vulnerability Lab
EMC M&R (Watch4net) lacks Cross-Site Request Forgery protection Securify B.V.
Bug bounty submission test111 tesla
Xerox Phaser 6700 - Remote Root-Exploits utilizing Clone Files Raphael Ernst
Friday, 29 April
Wordpress Truemag Theme - Client Side Cross Site Scripting Web Vulnerability Vulnerability Lab