-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Note: the current version of the following document is available here:
https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbhf03744en_us
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: hpesbhf03744en_us
Version: 1
[+] Credits: John Page a.k.a hyp3rlinx
[+] Website: hyp3rlinx.altervista.org
[+] Source:
http://hyp3rlinx.altervista.org/advisories/MANTIS-BUG-TRACKER-CSRF-PERMALINK-INJECTION.txt
[+] ISR: ApparitionSec
Vendor:
www.mantisbt.org
Product:
=
Mantis Bug
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
- -
Debian Security Advisory DSA-3858-1 secur...@debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
May 19, 2017
CVE-2017-5657: Apache Archiva CSRF vulnerabilities for various REST endpoints
Severity: Important
Vendor:
The Apache Software Foundation
Versions Affected:
Archiva 2.0.0 - 2.2.1
The unsupported versions 1.x are also affected.
Several REST service endpoints of Apache Archiva are not
[+] Credits: John Page AKA hyp3rlinx
[+] Website: hyp3rlinx.altervista.org
[+] Source:
http://hyp3rlinx.altervista.org/advisories/PEGASUS-MAILTO-LINK-REMOTE-CODE-EXECUTION.txt
[+] ISR: APPARITIONSEC
Vendor:
=
www.pmail.com
Product:
===
[+] Credits: John Page aka HYP3RLINX
[+] Website: hyp3rlinx.altervista.org
[+] Source:
http://hyp3rlinx.altervista.org/advisories/SECURE-AUDITOR-v3.0-DIRECTORY-TRAVERSAL.txt
[+] ISR: ApparitionSec
Vendor:
www.secure-bytes.com
Product:
[+] Credits: John Page aka HYP3RLINX
[+] Website: hyp3rlinx.altervista.org
[+] Source:
http://hyp3rlinx.altervista.org/advisories/SECURE-AUDITOR-v3.0-DIRECTORY-TRAVERSAL.txt
[+] ISR: ApparitionSec
Vendor:
www.secure-bytes.com
Product:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
This email refers to the advisory found at
https://confluence.atlassian.com/x/jW2xNQ .
CVE ID:
* CVE-2017-8768.
Product: SourceTree.
Affected SourceTree product versions:
* SourceTree for Mac 1.4.0 <= version < 2.5.1
* SourceTree for Windows
