|
|
Colapse all |
Post message
Trend Micro Direct Pass - Filter Bypass & Persistent Web Vulnerability 2016-01-28 Vulnerability Lab (research vulnerability-lab com) HCA0005 - Liberty Global - Horizon HD STB - predictable WiFi passphrase 2016-01-28 Hacking Corporation SÃ rl (releases hackingcorp ch) ------------------------------------------------------------------------ ---- Advisory ID: HCA0005 - http://hackingcorp.ch/advisories/HCA0005.pdf Product: Horizon HD / WiFi Vendor: Liberty Global plc companies (Unitymedia GmbH, UPC Cablecom, ...) Affected Version(s): unknown Tested Version(s): curren [ more ] [ reply ] Log2Space Central v 6.2 Multiple XSS Vulnerability 2016-01-27 Rahul Pratap Singh (techno rps gmail com) ## FULL DISCLOSURE #Product : Log2Space Central #Exploit Author : Rahul Pratap Singh #Version : 6.2 #Home page Link : http://www.spacecom.co.in/log2spacecentralserver_overview.html #Website : 0x62626262.wordpress.com #Linkedin : https://in.linkedin.com/in/rahulpratapsingh94 #Date : [ more ] [ reply ] Cisco Security Advisory: Cisco RV220 Management Authentication Bypass Vulnerability 2016-01-27 Cisco Systems Product Security Incident Response Team (psirt cisco com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco RV220W Management Authentication Bypass Vulnerability Advisory ID: cisco-sa-20160127-rv220 Revision 1.0 For Public Release 2016 January 27 16:00 UTC (GMT) +--------------------------------------------------------------------- Summary ======= [ more ] [ reply ] Cisco Security Advisory: Cisco Wide Area Application Service CIFS DoS Vulnerability 2016-01-27 Cisco Systems Product Security Incident Response Team (psirt cisco com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Wide Area Application Service CIFS Denial of Service Vulnerability Advisory ID: cisco-sa-20160127-waascifs Revision 1.0 For Public Release 2016 January 27 16:00 UTC (GMT) +--------------------------------------------------------------------- [ more ] [ reply ] Netgear GS105Ev2 - Multiple Vulnerabilities 2016-01-27 benedikt westermann i-sec tuv com # Multiple Vulnerabilities - Netgear GS105Ev2 ## Product Vendor: Netgear Model: GS105Ev2 Firmware version: 1.3.0.3,1.4.0.2 Reference: http://downloadcenter.netgear.com/de/product/GS105Ev2#searchResults Netgear GS105Ev2 is a Gigabit switch with 5 ports targeting SMBs. The switch can be configu [ more ] [ reply ] los818 CMS 2016 Q1 - SQL Injection Web Vulnerability 2016-01-27 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== los818 CMS 2016 Q1 - SQL Injection Web Vulnerability References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1680 Release Date: ============= 2016-01-27 Vulnerability Laboratory ID (VL-ID): ================================== [ more ] [ reply ] Kleefa v1.7 (IR) - Multiple Web Vulnerabilities 2016-01-27 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== Kleefa v1.7 (IR) - Multiple Web Vulnerabilities References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1677 Release Date: ============= 2016-01-23 Vulnerability Laboratory ID (VL-ID): ==================================== 16 [ more ] [ reply ] WebMartIndia CMS 2016 Q1 - SQL Injection Vulnerability 2016-01-27 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== WebMartIndia CMS 2016 Q1 - SQL Injection Vulnerability References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1681 Release Date: ============= 2016-01-26 Vulnerability Laboratory ID (VL-ID): ================================ [ more ] [ reply ] Classic Infomedia (Login) - Auth Bypass Web Vulnerability 2016-01-27 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== Classic Infomedia (Login) - Auth Bypass Web Vulnerability References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1679 Release Date: ============= 2016-01-25 Vulnerability Laboratory ID (VL-ID): ============================= [ more ] [ reply ] Ebay Magento Bug Bounty #2 - Persistent Web Vulnerability 2016-01-27 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== Ebay Magento Bug Bounty #2 - Persistent Web Vulnerability References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1203 eBay Inc. Bug Bounty Program ID: EIBBP-26644 Release Date: ============= 2016-01-18 Vulnerability Labora [ more ] [ reply ] Telegram (API) - Cross Site Request Forgery Vulnerabilities 2016-01-27 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== Telegram (API) - Cross Site Request Forgery Vulnerabilities References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1648 Release Date: ============= 2016-01-17 Vulnerability Laboratory ID (VL-ID): =========================== [ more ] [ reply ] Barracuda Networks Bug Bounty #38 Message Archiver - Multiple Vulnerabilities 2016-01-27 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== Barracuda Networks Bug Bounty #38 Message Archiver - Multiple Vulnerabilities References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1108 Barracuda Networks Security ID (BNSEC): BNSEC-1530 Release Date: ============= 2016-01 [ more ] [ reply ] Apple WatchOS v2.1 - Denial of Service Vulnerability 2016-01-27 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== Apple WatchOS v2.1 - Denial of Service Vulnerability References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1659 Followup ID: 634926833 Release Date: ============= 2016-01-11 Vulnerability Laboratory ID (VL-ID): ========== [ more ] [ reply ] Secure Item Hub v1.0 iOS - Multiple Web Vulnerabilities 2016-01-27 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== Secure Item Hub v1.0 iOS - Multiple Web Vulnerabilities References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1682 Release Date: ============= 2016-01-27 Vulnerability Laboratory ID (VL-ID): =============================== [ more ] [ reply ] BK Mobile CMS SQLi and XSS Vulnerability 2016-01-27 Rahul Pratap Singh (techno rps gmail com) ## FULL DISCLOSURE #Product : BK Mobile CMS #Exploit Author : Rahul Pratap Singh #Version : 2.4 #Home page Link : http://codecanyon.net/item/jquery-mobile-website-with-full-admin-panel/2 441358 #Website : 0x62626262.wordpress.com #Linkedin : https://in.linkedin.com/in/rahulpratapsingh94 #Date : 27/J [ more ] [ reply ] [SECURITY] [DSA 3456-1] chromium-browser security update 2016-01-27 Michael Gilbert (mgilbert debian org) [ERPSCAN-15-024] SAP HANA hdbindexserver - Memory corruption 2016-01-27 ERPScan inc (erpscan online gmail com) FreeBSD Security Advisory FreeBSD-SA-16:10.linux 2016-01-27 FreeBSD Security Advisories (security-advisories freebsd org) FreeBSD Security Advisory FreeBSD-SA-16:09.ntp 2016-01-27 FreeBSD Security Advisories (security-advisories freebsd org) FreeBSD Security Advisory FreeBSD-SA-16:08.bind 2016-01-27 FreeBSD Security Advisories (security-advisories freebsd org) WP-Ultimate CSV Importer XSS Vulnerability 2016-01-26 Rahul Pratap Singh (techno rps gmail com) ## FULL DISCLOSURE #Product : WP-Ultimate CSV Importer #Exploit Author : Rahul Pratap Singh #Version : 3.8.6 #Home page Link : https://wordpress.org/plugins/wp-ultimate-csv-importer #Website : 0x62626262.wordpress.com #Linkedin : https://in.linkedin.com/in/rahulpratapsingh94 #Date : 27/Jan/2016 XS [ more ] [ reply ] [security bulletin] HPSBGN03537 rev.1 - HPE IceWall Federation Agent and IceWall File Manager running libXML2, Remote or Local Denial of Service (DoS) 2016-01-26 security-alert hpe com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId= emr_n a-c04944172 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04944172 Version: 1 HPSBGN03537 r [ more ] [ reply ] [security bulletin] HPSBGN03536 rev.1 - HP IceWall Products running OpenSSL, Remote and Local Denial of Service (DoS) 2016-01-26 security-alert hpe com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId= emr_n a-c04944173 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04944173 Version: 1 HPSBGN03536 r [ more ] [ reply ] PHP LiteSpeed SAPI out of boundaries read due to missing input validation 2016-01-25 Imre RAD (imre rad search-lab hu) The LiteSpeed SAPI module in PHP did not sanitize several fields of the LSAPI request correctly. In the source file sapi/litespeed/lsapilib.c, the parseRequest function calculated addresses of thesevariables in the following way: pReq->m_pScriptFile = pReq->m_pReqBuf + pReq->m_pHeader->m_sc [ more ] [ reply ] [CORE-2016-0002] - Lenovo ShareIT Multiple Vulnerabilities 2016-01-25 CORE Advisories Team (advisories coresecurity com) 1. Advisory Information Title: Lenovo ShareIT Multiple Vulnerabilities Advisory ID: CORE-2016-0002 Advisory URL: http://www.coresecurity.com/advisories/lenovo-shareit-multiple-vulnerabi lities Date published: 2016-01-25 Date of last update: 2016-01-22 Vendors contacted: Lenovo Release mode: Coordina [ more ] [ reply ] |
|
Privacy Statement |
===============
Trend Micro Direct Pass - Filter Bypass & Persistent Web Vulnerability
References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1661
Video: http://www.vulnerability-lab.com/get_content.php?id=1688
Release Date:
=============
2
[ more ] [ reply ]