Full Disclosure: by date

PreviousPrevious period
Next periodNext

25 messages starting Feb 04 24 and ending Feb 20 24
Date index | Thread index | Author index

Sunday, 04 February

NULL pointer dereference in the function handle_viminfo_register() of vim Christian Brabandt
[KIS-2024-01] XenForo <= 2.2.13 (ArchiveImport.php) Zip Slip Vulnerability Egidio Romano
TROJAN.WIN32 BANKSHOT / Remote Stack Buffer Overflow (SEH) malvuln
Research about usage & possible issues of the NVD Andreas Hammer
CVE-2023-6246: Heap-based buffer overflow in the glibc's syslog() Qualys Security Advisory via Fulldisclosure
Out-of-bounds read & write in the glibc's qsort() Qualys Security Advisory via Fulldisclosure
APPLE-SA-02-02-2024-1 visionOS 1.0.2 Apple Product Security via Fulldisclosure

Tuesday, 13 February

IBM i Access Client Solutions / Remote Credential Theft / CVE-2024-22318 hyp3rlinx
Wyrestorm Apollo VX20 / Incorrect Access Control - DoS / CVE-2024-25736 hyp3rlinx
Wyrestorm Apollo VX20 / Account Enumeration / CVE-2024-25734 hyp3rlinx
Wyrestorm Apollo VX20 / Incorrect Access Control - Credentials Disclosure / CVE-2024-25735 hyp3rlinx
Microsoft Windows Defender / Trojan.Win32/Powessere.G / Detection Mitigation Bypass Part 2. hyp3rlinx
Command Injection Vulnerability in KiTTY Get Remote File Through SCP Input (CVE-2024-23749) Austin DeFrancesco via Fulldisclosure
Buffer Overflow Vulnerabilities in KiTTY Start Duplicated Session Hostname (CVE-2024-25003) & Username (CVE-2024-25004) Variables Austin DeFrancesco via Fulldisclosure
Android passkeys unexpectedly deleted or useless after sync Erik van Straten (FD)
OXAS-ADV-2023-0007: OX App Suite Security Advisory Martin Heiland via Fulldisclosure
Stored XSS and RCE - adaptcmsv3.0.3 Andrey Stoykov
SEC Consult SA-20240212-0 :: Multiple Stored Cross-Site Scripting vulnerabilities in Statamic CMS SEC Consult Vulnerability Lab, Research via Fulldisclosure

Thursday, 15 February

44CON 2024 September 18th - 20th CFP Florent Daigniere via Fulldisclosure

Tuesday, 20 February

Microsoft Windows Defender / Trojan.Win32/Powessere.G / Detection Mitigation Bypass Part 3 hyp3rlinx
Microsoft Windows Defender / VBScript Detection Bypass hyp3rlinx
Microsoft Windows Defender / Backdoor:JS/Relvelshe.A / Detection Mitigation Bypass hyp3rlinx
CVE-2024-24681: Insecure AES key in Yealink Configuration Encrypt Tool Jeroen J.A.W. Hermans via Fulldisclosure
Re: Buffer Overflow in graphviz via via a crafted config6a file Matthew Fernandez
SEC Consult SA-20240220-0 :: Multiple Stored Cross-Site Scripting Vulnerabilities in OpenOLAT (Frentix GmbH) SEC Consult Vulnerability Lab, Research via Fulldisclosure
PreviousPrevious period
Next periodNext