Full Disclosure: by author

Previous period
Next period

22 messages starting Dec 18 24 and ending Dec 12 24
Date index | Thread index | Author index

Andrey Stoykov

Stored XSS with Filter Bypass - blogenginev3.3.8 Andrey Stoykov (Dec 18)

Apple Product Security via Fulldisclosure

APPLE-SA-12-11-2024-1 iOS 18.2 and iPadOS 18.2 Apple Product Security via Fulldisclosure (Dec 12)
APPLE-SA-12-11-2024-7 tvOS 18.2 Apple Product Security via Fulldisclosure (Dec 12)
APPLE-SA-12-11-2024-6 watchOS 11.2 Apple Product Security via Fulldisclosure (Dec 12)
APPLE-SA-12-11-2024-3 macOS Sequoia 15.2 Apple Product Security via Fulldisclosure (Dec 12)
APPLE-SA-12-11-2024-5 macOS Ventura 13.7.2 Apple Product Security via Fulldisclosure (Dec 12)
APPLE-SA-12-11-2024-9 Safari 18.2 Apple Product Security via Fulldisclosure (Dec 12)
APPLE-SA-12-11-2024-8 visionOS 2.2 Apple Product Security via Fulldisclosure (Dec 12)
APPLE-SA-12-11-2024-4 macOS Sonoma 14.7.2 Apple Product Security via Fulldisclosure (Dec 12)
APPLE-SA-12-11-2024-2 iPadOS 17.7.3 Apple Product Security via Fulldisclosure (Dec 12)

Blazej Adamczyk

Multiple vulnerabilities in CTFd versions <= 3.7.4 Blazej Adamczyk (Dec 30)

Egidio Romano

[KIS-2024-07] GFI Kerio Control <= 9.4.5 Multiple HTTP Response Splitting Vulnerabilities Egidio Romano (Dec 16)

hyp3rlinx

IBMi Navigator / CVE-2024-51463 / Server Side Request Forgery (SSRF) hyp3rlinx (Dec 30)
IBMi Navigator / CVE-2024-51464 / HTTP Security Token Bypass hyp3rlinx (Dec 30)

Jeroen Hermans via Fulldisclosure

Access Control in Paxton Net2 software Jeroen Hermans via Fulldisclosure (Dec 02)

malvuln

RansomLordNG - anti-ransomware exploit tool malvuln (Dec 16)

Matthias Deeg via Fulldisclosure

[SYSS-2024-085]: Broadcom CA Client Automation - Improper Privilege Management (CWE-269) Matthias Deeg via Fulldisclosure (Dec 18)

SEC Consult Vulnerability Lab via Fulldisclosure

SEC Consult SA-20241204-0 :: Multiple Critical Vulnerabilities in Image Access Scan2Net (14 CVE) SEC Consult Vulnerability Lab via Fulldisclosure (Dec 04)
SEC Consult SA-20241211-0 :: Reflected Cross-Site Scripting in Numerix License Server Administration System Login SEC Consult Vulnerability Lab via Fulldisclosure (Dec 12)

Security Explorations

Microsoft Warbird and PMP security research - technical doc Security Explorations (Dec 03)

Thomas Weber | CyberDanube via Fulldisclosure

CyberDanube Security Research 20241219-0 | Authenticated Remote Code Execution in Ewon Flexy 205 Thomas Weber | CyberDanube via Fulldisclosure (Dec 21)
St. Poelten UAS | Multiple Vulnerabilities in ORing IAP Thomas Weber | CyberDanube via Fulldisclosure (Dec 12)
Previous period
Next period