|
|
Colapse all |
Post message
Pimcore v3.0.5 CMS - Multiple Web Vulnerabilities 2015-05-08 Vulnerability Lab (research vulnerability-lab com) [SECURITY] [DSA 3251-2] dnsmasq regression update 2015-05-07 Salvatore Bonaccorso (carnil debian org) CSRF/XSS In Ad_Button Wordpress 2015-05-07 kingkaustubh me com ================================================================ CSRF/Stored XSS Vulnerability in Ad Buttons Plugin ================================================================ . contents:: Table Of Content Overview ======== * Title :CSRF and Stored XSS Vulnerability in Ad Buttons Wordpress [ more ] [ reply ] CSRF/XSS in embed-articles Wordpress Plugin 2015-05-07 kingkaustubh me com ====================================================== CSRF/Stored XSS Vulnerability in embed articles Plugin ====================================================== . contents:: Table Of Content Overview ======== * Title :CSRF and Stored XSS Vulnerability in embed-articles Wordpress Plugin * Au [ more ] [ reply ] [security bulletin] HPSBUX03194 rev.1 - HP-UX running sendmail(1M), Remote Disclosure of Information 2015-05-07 security-alert hp com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emr_na-c04506802 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04506802 Version: 1 HPSBUX03194 re [ more ] [ reply ] Grindr v2.1.1 iOS & Account System - Breach Attack Vulnerability 2015-05-07 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== Grindr v2.1.1 iOS & Account System - Breach Attack Vulnerability References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1420 Release Date: ============= 2015-05-03 Vulnerability Laboratory ID (VL-ID): ====================== [ more ] [ reply ] Album Streamer v2.0 iOS - Directory Traversal Vulnerability 2015-05-07 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== Album Streamer v2.0 iOS - Directory Traversal Vulnerability References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1481 Release Date: ============= 2015-05-07 Vulnerability Laboratory ID (VL-ID): =========================== [ more ] [ reply ] Yahoo eMarketing Bug Bounty #31 - Cross Site Scripting Vulnerability 2015-05-07 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== Yahoo eMarketing Bug Bounty #31 - Cross Site Scripting Vulnerability References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1491 Yahoo Security ID (H1): #55395 Release Date: ============= 2015-05-07 Vulnerability Laborato [ more ] [ reply ] Wordpress Twenty Fifteen Theme - DOM XSS Vulnerability - CVE-2015-3429 2015-05-07 Onur Yilmaz (onur netsparker com) Information -------------------- Advisory by Netsparker. Name: DOM XSS Vulnerability in Twenty Fifteen WordPress Theme Affected Software : WordPress Affected Versions: 4.2.1 and probably below Vendor Homepage : https://wordpress.org/ and https://wordpress.org/themes/twentyfifteen/ Vulnerability Type [ more ] [ reply ] [SYSS-2015-018] BullGuard Premium Protection - Authentication Bypass 2015-05-07 matthias deeg syss de [SYSS-2015-017] BullGuard Internet Security - Authentication Bypass 2015-05-07 matthias deeg syss de F5 ASM JSON Profile Bypass 2015-05-06 Peter Lapp (lappsec gmail com) Details ======= Product: F5 BIG-IP Application Security Manager (ASM) Vulnerability: Bypass Author: Peter Lapp, lappsec () gmail com CVE: None assigned Vulnerable Versions: Confirmed 11.4.0, 11.4.1. Should apply to all releases. Fixed Version: None Summary ======= The F5 ASM is a web applicatio [ more ] [ reply ] APPLE-SA-2015-05-06-1 Safari 8.0.6, Safari 7.1.6, and Safari 6.2.6 2015-05-06 Apple Product Security (product-security-noreply lists apple com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2015-05-06-1 Safari 8.0.6, Safari 7.1.6, and Safari 6.2.6 Safari 8.0.6, Safari 7.1.6, and Safari 6.2.6 are now available and address the following: WebKit Available for: OS X Mountain Lion v10.8.5, OS X Mavericks v10.9.5, and OS X Yosemite v [ more ] [ reply ] [SE-2014-02] Some additional GAE Java security sandbox bypasses 2015-05-06 Security Explorations (contact security-explorations com) Hello All, Security Explorations released technical details and POC codes for additional security vulnerabilities found in Google App Engine for Java. All relevant materials can be found at our SE-2014-02 project details page: http://www.security-explorations.com/en/SE-2014-02-details.html The a [ more ] [ reply ] Alienvault OSSIM/USM Multiple Vulnerabilities 2015-05-06 Peter Lapp (lappsec gmail com) Details ======= Product: Alienvault OSSIM/USM Vulnerability: Multiple Vulnerabilities (XSS, SQLi, Command Execution) Author: Peter Lapp, lappsec (at) gmail (dot) com [email concealed] CVE: None assigned Vulnerable Versions: Tested on 4.14, 4.15, and 5.0. It likely affects all previous versions as well. Fixed Version: No fix ha [ more ] [ reply ] CSRF/XSS In Ultimate Profile Builder by CMSLive Wordpress Plugin 2015-05-06 kingkaustubh me com ================================================================ CSRF/Stored XSS Vulnerability in Ultimate profile Builder Plugin ================================================================ . contents:: Table Of Content Overview ======== * Title :CSRF and Stored XSS Vulnerability in Ultima [ more ] [ reply ] CSRF/XSS In ClickBank ads Wordpress Plugin 2015-05-06 kingkaustubh me com ================================================================ CSRF/Stored XSS Vulnerability in ClickBank Ads V 1.7 Plugin ================================================================ . contents:: Table Of Content Overview ======== * Title :CSRF and Stored XSS Vulnerability in ClickBank A [ more ] [ reply ] CSRF/XSS In Manage Engine Asset Explorer 2015-05-06 kingkaustubh me com ======================================================================== ======= CSRF/Stored XSS Vulnerability in Manage Engine Asset Explorer ======================================================================== ======= . contents:: Table Of Content Overview ======== * Title :CSRF/Stored XSS v [ more ] [ reply ] CSRF/XSSIn Ad_InSerter Wordpress 2015-05-06 kingkaustubh me com ================================================================ CSRF/Stored XSS Vulnerability in Ad Inserter Plugin ================================================================ . contents:: Table Of Content Overview ======== * Title :CSRF and Stored XSS Vulnerability in Ad Inserter Wordpre [ more ] [ reply ] CSRF/XSS In Embed ArticlesWordpress Plugin 2015-05-06 kingkaustubh me com ====================================================== CSRF/Stored XSS Vulnerability in embed articles Plugin ====================================================== . contents:: Table Of Content Overview ======== * Title :CSRF and Stored XSS Vulnerability in embed-articles Wordpress Plugin * Au [ more ] [ reply ] Cisco Security Advisory: Cisco UCS Central Software Arbitrary Command Execution Vulnerability 2015-05-06 Cisco Systems Product Security Incident Response Team (psirt cisco com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Cisco Security Advisory: Cisco UCS Central Software Arbitrary Command Execution Vulnerability Advisory ID: cisco-sa-20150506-ucsc Revision 1.0 For Public Release 2015 May 6 16:00 UTC (GMT) +--------------------------------------------------------- [ more ] [ reply ] Advisory: Filezilla FTP server is vulnerable to FTP PORT bounce 2015-05-06 Amit Klein (aksecurity gmail com) Dear list A security advisory for Filezilla FTP server versions 0.8.0-0.9.50 is available at http://www.securitygalore.com/site3/filezilla_ftp_server_advisory A new version of Filezilla FTP server (0.9.51) is available for immediate download at https://filezilla-project.org/download.php?type=server [ more ] [ reply ] TORNADO Computer Trading CMS - SQL Injection Vulnerability 2015-05-06 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== TORNADO Computer Trading CMS - SQL Injection Vulnerability References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1489 Release Date: ============= 2015-05-05 Vulnerability Laboratory ID (VL-ID): ============================ [ more ] [ reply ] PDF Converter & Editor 2.1 iOS - File Include Vulnerability 2015-05-06 Vulnerability Lab (research vulnerability-lab com) Document Title: =============== PDF Converter & Editor 2.1 iOS - File Include Vulnerability References (Source): ==================== http://www.vulnerability-lab.com/get_content.php?id=1480 Release Date: ============= 2015-05-06 Vulnerability Laboratory ID (VL-ID): =========================== [ more ] [ reply ] |
|
Privacy Statement |
===============
Pimcore v3.0.5 CMS - Multiple Web Vulnerabilities
References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1482
Release Date:
=============
2015-05-08
Vulnerability Laboratory ID (VL-ID):
====================================
[ more ] [ reply ]