Full Disclosure: by author
RSS Feed
About List
All Lists
Previous period
57 messages
starting Sep 14 18 and
ending Sep 20 18
Date index |
Thread index |
Author index
Alphan Yavaş
Disclose SSRF Vulnerability Alphan Yavaş (Sep 14)
Disclose SSRF Vulnerability alphan yavaş (Sep 17)
Andrew Klaus
CVE-2018-15898: Subsonic Music Streamer 4.4 (Android) - Improper Certificate Validation Andrew Klaus (Sep 07)
CVE-2018-1000664: DSub for Subsonic (Android) - Improper Certificate Validation Andrew Klaus (Sep 07)
Antoine Neuenschwander
CVE-2018-16242 - oBike Electronic Lock Bypass Antoine Neuenschwander (Sep 14)
Apple Product Security
APPLE-SA-2018-9-24-4 Additional information for APPLE-SA-2018-9-17-1 iOS 12 Apple Product Security (Sep 24)
APPLE-SA-2018-9-17-2 watchOS 5 Apple Product Security (Sep 17)
APPLE-SA-2018-9-17-3 tvOS 12 Apple Product Security (Sep 17)
APPLE-SA-2018-9-24-3 Additional information for APPLE-SA-2018-9-17-4 Safari 12 Apple Product Security (Sep 24)
APPLE-SA-2018-9-17-4 Safari 12 Apple Product Security (Sep 17)
APPLE-SA-2018-9-24-5 Additional information for APPLE-SA-2018-9-17-2 watchOS 5 Apple Product Security (Sep 24)
APPLE-SA-2018-9-24-1 macOS Mojave 10.14 Apple Product Security (Sep 24)
APPLE-SA-2018-9-24-6 Additional information for APPLE-SA-2018-9-17-3 tvOS 12 Apple Product Security (Sep 24)
APPLE-SA-2018-9-17-5 Apple Support 2.4 for iOS Apple Product Security (Sep 17)
APPLE-SA-2018-9-17-1 iOS 12 Apple Product Security (Sep 17)
APPLE-SA-2018-9-24-2 iTunes 12.9 for Windows Apple Product Security (Sep 24)
Asterisk Security Team
AST-2018-009: Remote crash vulnerability in HTTP websocket upgrade Asterisk Security Team (Sep 20)
Ben N
Multiple Vulnerabilities in Oracle WebCenter Interaction 10.3.3 Ben N (Sep 17)
BSidesSF CFP via Fulldisclosure
[CFP] BSides San Francisco - March 2019 BSidesSF CFP via Fulldisclosure (Sep 04)
Core Security Advisories Team
[CORE-2018-0008] - Opsview Monitor Multiple Vulnerabilities Core Security Advisories Team (Sep 04)
Dam Cab
Policy bypass on Imperva WAF Dam Cab (Sep 14)
Enrico Weigelt, metux IT consult
Skype Debian package: allows complete machine takeover for Microsoft Enrico Weigelt, metux IT consult (Sep 28)
Francesco Servida
[CVE-2018-16225] QBee MultiSensor Camera LAN Traffic Vulnerability Francesco Servida (Sep 17)
hyp3rlinx
ZDI-CAN-6307 / Microsoft Baseline Security Analyzer v2.3 / XML External Entity Injection hyp3rlinx (Sep 10)
Jonas Lejon
CVE-2017-17762 - XXE Vulnerability in Episerver CMS Jonas Lejon (Sep 14)
Justin Ferguson
bounties Justin Ferguson (Sep 24)
Manuel Garcia Cardenas
WordPress Plugin Wechat Broadcast 1.2.0 - Local/Remote File Inclusion Manuel Garcia Cardenas (Sep 20)
WordPress Plugin Localize My Post 1.0 - Local File Inclusion Manuel Garcia Cardenas (Sep 20)
Mathieu Michaud
CVE-2018-15502 - Insecure permissions in Lone Wolf Technologies loadingDOCS 2018-08-13 allow remote attackers to download any confidential files via https requests for predictable URLs. Mathieu Michaud (Sep 14)
Murat Aydemir
OPManager SQL Injection Vulnerability Murat Aydemir (Sep 20)
MustLive
DAVOSET v.1.3.6 MustLive (Sep 14)
psy
New Release: UFONet v1.1 - "Quantum Hydra!"... psy (Sep 28)
Qualys Security Advisory
Integer overflow in Linux's create_elf_tables() (CVE-2018-14634) Qualys Security Advisory (Sep 28)
Sebastian Neuner via Fulldisclosure
Vulnerabilities in KONEs Group Controller (KGC) Sebastian Neuner via Fulldisclosure (Sep 07)
SEC Consult Vulnerability Lab
SEC Consult SA-20180918-0 :: Remote Code Execution via PHP unserialize in Moodle open-source learning platform SEC Consult Vulnerability Lab (Sep 18)
SEC Consult SA-20180926-0 :: SEC Consult Vulnerability Lab (Sep 26)
Re: SEC Consult SA-20180926-0 :: Stored Cross-Site Scripting in Progress Kendo UI Editor SEC Consult Vulnerability Lab (Sep 26)
SEC Consult SA-20180906-0 :: CSV Formula Injection in DokuWiki SEC Consult Vulnerability Lab (Sep 06)
SEC Consult SA-20180924-0 :: Multiple Vulnerabilities in Citrix StorageZones Controller SEC Consult Vulnerability Lab (Sep 25)
secure
DSA-2018-158: Dell EMC ESRS Policy Manager Remote Code Execution Vulnerability secure (Sep 24)
DSA-2018-150:RSA BSAFE® SSL-J Multiple Vulnerabilities secure (Sep 07)
DSA-2018-141: Dell EMC Unity Family Incorrect File Permissions vulnerability secure (Sep 28)
DSA-2018-152: RSA® Authentication Manager Multiple Vulnerabilities secure (Sep 21)
DSA-2018-156: Dell EMC VPLEX Insecure File Permissions vulnerability on Witness secure (Sep 07)
DSA-2018-147: Dell EMC Isilon OneFS and Dell EMC IsilonSD Edge Remote Kernel Crash Vulnerability secure (Sep 07)
DSA-2018-147: Dell EMC Isilon OneFS and IsilonSD Edge Remote Process Crash Vulnerability secure (Sep 14)
DSA-2018-101: Dell EMC Unity Family Multiple Vulnerabilities secure (Sep 18)
DSA-2018-152: RSA® Authentication Manager Multiple Vulnerabilities secure (Sep 20)
Securify B.V. via Fulldisclosure
Authentication bypass vulnerability in Western Digital My Cloud allows escalation to admin privileges Securify B.V. via Fulldisclosure (Sep 18)
Stefan Kanthak
Defense in depth -- the Microsoft way (part 57): installation of security updates fails on Windows Embedded POSReady 2009 Stefan Kanthak (Sep 04)
Executable installers are vulnerable^WEVIL (case 57): arbitrary code execution WITH escalation of privilege viaIntel Extreme Tuning Utility Stefan Kanthak (Sep 28)
Summer of Pwnage via Fulldisclosure
Seagate Personal Cloud multiple information disclosure vulnerabilities Summer of Pwnage via Fulldisclosure (Sep 12)
Sysdream Labs
[CVE-2018-13140] Antidote Remote Code Execution against the update component Sysdream Labs (Sep 21)
TNT BOM BOM
Hardened Debian Security Focused Distribution - Feedback Wanted! TNT BOM BOM (Sep 28)
Veysel hataş
Android Dexdump Buffer Overflow Vulnerability Veysel hataş (Sep 04)
X41 D-Sec GmbH Advisories
X41 D-Sec GmbH Security Advisory X41-2018-008: Multiple Vulnerabilities in HylaFAX X41 D-Sec GmbH Advisories (Sep 20)
X41 D-Sec GmbH Security Advisory X41-2018-007: Multiple Vulnerabilities in mgetty X41 D-Sec GmbH Advisories (Sep 20)