Messages by Date
-
2024/03/13
[FD] MetaFox Remote Shell Upload Exploit
j0ck1ng@tempr.email
-
2024/03/13
[FD] SEC Consult SA-20240307-0 :: Local Privilege Escalation via writable files in Checkmk Agent (CVE-2024-0670)
SEC Consult Vulnerability Lab, Research via Fulldisclosure
-
2024/03/13
[FD] HNS-2024-05 - HN Security Advisory - Multiple vulnerabilities in RT-Thread RTOS
Marco Ivaldi
-
2024/03/13
[FD] APPLE-SA-03-12-2024-1 GarageBand 10.4.11
Apple Product Security via Fulldisclosure
-
2024/03/13
[FD] APPLE-SA-03-07-2024-7 visionOS 1.1
Apple Product Security via Fulldisclosure
-
2024/03/13
[FD] APPLE-SA-03-07-2024-6 tvOS 17.4
Apple Product Security via Fulldisclosure
-
2024/03/13
[FD] APPLE-SA-03-07-2024-5 watchOS 10.4
Apple Product Security via Fulldisclosure
-
2024/03/13
[FD] APPLE-SA-03-07-2024-4 macOS Monterey 12.7.4
Apple Product Security via Fulldisclosure
-
2024/03/13
[FD] APPLE-SA-03-07-2024-3 macOS Ventura 13.6.5
Apple Product Security via Fulldisclosure
-
2024/03/13
[FD] APPLE-SA-03-07-2024-2 macOS Sonoma 14.4
Apple Product Security via Fulldisclosure
-
2024/03/13
[FD] APPLE-SA-03-07-2024-1 Safari 17.4
Apple Product Security via Fulldisclosure
-
2024/03/13
[FD] APPLE-SA-03-05-2024-2 iOS 16.7.6 and iPadOS 16.7.6
Apple Product Security via Fulldisclosure
-
2024/03/13
[FD] APPLE-SA-03-05-2024-1 iOS 17.4 and iPadOS 17.4
Apple Product Security via Fulldisclosure
-
2024/03/13
[FD] Backdoor.Win32.Beastdoor.oq / Unauthenticated Remote Command Execution
malvuln
-
2024/03/13
[FD] StimulusReflex CVE-2024-28121
lixts via Fulldisclosure
-
2024/03/13
[FD] [Full Disclosure] CVE-2024-25228: Unpatched Command Injection in Vinchin Backup & Recovery Versions 7.2 and Earlier
Valentin Lobstein via Fulldisclosure
-
2024/03/05
[FD] KL-001-2024-004: Artica Proxy Loopback Services Remotely Accessible Unauthenticated
KoreLogic Disclosures via Fulldisclosure
-
2024/03/05
[FD] KL-001-2024-003: Artica Proxy Unauthenticated File Manager Vulnerability
KoreLogic Disclosures via Fulldisclosure
-
2024/03/05
[FD] KL-001-2024-002: Artica Proxy Unauthenticated PHP Deserialization Vulnerability
KoreLogic Disclosures via Fulldisclosure
-
2024/03/05
[FD] KL-001-2024-001: Artica Proxy Unauthenticated LFI Protection Bypass Vulnerability
KoreLogic Disclosures via Fulldisclosure
-
2024/03/02
[FD] SEC Consult SA-20240226-0 :: Local Privilege Escalation via DLL Hijacking in Qognify VMS Client Viewer
SEC Consult Vulnerability Lab, Research via Fulldisclosure
-
2024/03/02
[FD] JetStream Smart Switch - TL-SG2210P v5.0/ Improper Access Control / CVE-2023-43318
Shaikh Shahnawaz
-
2024/03/02
[FD] Multiple XSS Issues in boidcmsv2.0.1
Andrey Stoykov
-
2024/03/02
[FD] XAMPP 5.6.40 - Error Based SQL Injection
Andrey Stoykov
-
2024/03/02
[FD] BACKDOOR.WIN32.AGENT.AMT / Authentication Bypass
malvuln
-
2024/03/02
[FD] Backdoor.Win32.Jeemp.c / Cleartext Hardcoded Credentials
malvuln
-
2024/03/02
[FD] BACKDOOR.WIN32.AUTOSPY.10 / Unauthenticated Remote Command Execution
malvuln
-
2024/03/02
[FD] BACKDOOR.WIN32.ARMAGEDDON.R / Hardcoded Cleartext Credentials
malvuln
-
2024/03/02
[FD] Multilaser Router - Access Control Bypass through Cookie Manipulation - CVE-2023-38946
Vinícius Moraes
-
2024/03/02
[FD] Multilaser Router - Access Control Bypass through URL Manipulation - CVE-2023-38945
Vinícius Moraes
-
2024/03/02
[FD] Multilaser Router - Access Control Bypass through Header Manipulation - CVE-2023-38944
Vinícius Moraes
-
2024/02/20
[FD] SEC Consult SA-20240220-0 :: Multiple Stored Cross-Site Scripting Vulnerabilities in OpenOLAT (Frentix GmbH)
SEC Consult Vulnerability Lab, Research via Fulldisclosure
-
2024/02/20
Re: [FD] Buffer Overflow in graphviz via via a crafted config6a file
Matthew Fernandez
-
2024/02/20
[FD] CVE-2024-24681: Insecure AES key in Yealink Configuration Encrypt Tool
Jeroen J.A.W. Hermans via Fulldisclosure
-
2024/02/20
[FD] Microsoft Windows Defender / Backdoor:JS/Relvelshe.A / Detection Mitigation Bypass
hyp3rlinx
-
2024/02/20
[FD] Microsoft Windows Defender / VBScript Detection Bypass
hyp3rlinx
-
2024/02/20
[FD] Microsoft Windows Defender / Trojan.Win32/Powessere.G / Detection Mitigation Bypass Part 3
hyp3rlinx
-
2024/02/15
[FD] 44CON 2024 September 18th - 20th CFP
Florent Daigniere via Fulldisclosure
-
2024/02/13
[FD] SEC Consult SA-20240212-0 :: Multiple Stored Cross-Site Scripting vulnerabilities in Statamic CMS
SEC Consult Vulnerability Lab, Research via Fulldisclosure
-
2024/02/13
[FD] Stored XSS and RCE - adaptcmsv3.0.3
Andrey Stoykov
-
2024/02/13
[FD] OXAS-ADV-2023-0007: OX App Suite Security Advisory
Martin Heiland via Fulldisclosure
-
2024/02/13
[FD] Android passkeys unexpectedly deleted or useless after sync
Erik van Straten (FD)
-
2024/02/13
[FD] Buffer Overflow Vulnerabilities in KiTTY Start Duplicated Session Hostname (CVE-2024-25003) & Username (CVE-2024-25004) Variables
Austin DeFrancesco via Fulldisclosure
-
2024/02/13
[FD] Command Injection Vulnerability in KiTTY Get Remote File Through SCP Input (CVE-2024-23749)
Austin DeFrancesco via Fulldisclosure
-
2024/02/13
[FD] Microsoft Windows Defender / Trojan.Win32/Powessere.G / Detection Mitigation Bypass Part 2.
hyp3rlinx
-
2024/02/13
[FD] Wyrestorm Apollo VX20 / Incorrect Access Control - Credentials Disclosure / CVE-2024-25735
hyp3rlinx
-
2024/02/13
[FD] Wyrestorm Apollo VX20 / Account Enumeration / CVE-2024-25734
hyp3rlinx
-
2024/02/13
[FD] Wyrestorm Apollo VX20 / Incorrect Access Control - DoS / CVE-2024-25736
hyp3rlinx
-
2024/02/13
[FD] IBM i Access Client Solutions / Remote Credential Theft / CVE-2024-22318
hyp3rlinx
-
2024/02/04
[FD] APPLE-SA-02-02-2024-1 visionOS 1.0.2
Apple Product Security via Fulldisclosure
-
2024/02/04
[FD] Out-of-bounds read & write in the glibc's qsort()
Qualys Security Advisory via Fulldisclosure
-
2024/02/04
[FD] CVE-2023-6246: Heap-based buffer overflow in the glibc's syslog()
Qualys Security Advisory via Fulldisclosure
-
2024/02/04
[FD] Research about usage & possible issues of the NVD
Andreas Hammer
-
2024/02/04
[FD] TROJAN.WIN32 BANKSHOT / Remote Stack Buffer Overflow (SEH)
malvuln
-
2024/02/04
[FD] [KIS-2024-01] XenForo <= 2.2.13 (ArchiveImport.php) Zip Slip Vulnerability
Egidio Romano
-
2024/02/04
[FD] NULL pointer dereference in the function handle_viminfo_register() of vim
Christian Brabandt
-
2024/01/27
Re: [FD] Buffer Overflow in graphviz via via a crafted config6a file
Matthew Fernandez
-
2024/01/27
[FD] CVEs based on commit messages
Mark Esler
-
2024/01/27
Re: [FD] null pointer deference in nano via read_the_list()
Mark Esler
-
2024/01/27
Re: [FD] NULL pointer dereference in freedesktop Mesa via check_xshm()
Dan Cross
-
2024/01/27
Re: [FD] Null pointer dereference in Xedit
Alan Coopersmith
-
2024/01/26
[FD] Buffer overflow in Sane
Meng Ruijie
-
2024/01/26
[FD] null pointer deference in tex-live
Meng Ruijie
-
2024/01/26
[FD] null pointer deference in MiniZinc via a crafted Preferences.json file
Meng Ruijie
-
2024/01/26
[FD] null pointer deference in LLVM
Meng Ruijie
-
2024/01/26
[FD] null pointer deference in tex-live via a crafted cmr10.pfb
Meng Ruijie
-
2024/01/26
[FD] null pointer deference in Sane via a crafted config file
Meng Ruijie
-
2024/01/26
[FD] null pointer deference in MiniZinc via a crafted .mzn file
Meng Ruijie
-
2024/01/26
[FD] Buffer Overflow in graphviz via via a crafted config6a file
Meng Ruijie
-
2024/01/26
[FD] NULL pointer dereference in QT via the function QXcbConnection::initializeAllAtoms()
Meng Ruijie
-
2024/01/26
[FD] null pointer deference in nano via read_the_list()
Meng Ruijie
-
2024/01/26
[FD] NULL pointer dereference in freedesktop Mesa via check_xshm()
Meng Ruijie
-
2024/01/26
[FD] null pointer deference in gnome gtk via parse_settings() at xsettings-client.c
Meng Ruijie
-
2024/01/26
[FD] SEGV in S-Lang via fixup_tgetstr()
Meng Ruijie
-
2024/01/26
[FD] null pointer deference in gnome gtk via init_randr15() at gdkscreen-x11.c
Meng Ruijie
-
2024/01/26
[FD] arithmetic exception in S-lang via the function tt_sprintf()
Meng Ruijie
-
2024/01/26
[FD] null pointer deference in gnome gdk-pixbuf
Meng Ruijie
-
2024/01/26
[FD] null pointer deference in GNU Midnight at /tty/x11conn.c
Meng Ruijie
-
2024/01/26
[FD] NULL pointer dereference in glXGetDrawableScreen() of OpenGL libglvnd
Meng Ruijie
-
2024/01/26
[FD] NULL pointer dereference in XIQueryDevice() of gnome gtk
Meng Ruijie
-
2024/01/26
[FD] NULL pointer dereference in __glXGetDrawableAttribute() of Mesa
Meng Ruijie
-
2024/01/26
[FD] NULL pointer dereference in the function handle_viminfo_register() of vim
Meng Ruijie
-
2024/01/26
[FD] Null pointer deference in XGetWMHints() of Xfig
Meng Ruijie
-
2024/01/26
[FD] Buffer Overflow in glXQueryServerString() of mesa
Meng Ruijie
-
2024/01/26
[FD] NULL pointer dereference in tgetstr() of ncurses
Meng Ruijie
-
2024/01/26
[FD] Null pointer dereference in Xedit
Meng Ruijie
-
2024/01/26
[FD] Null pointer deference in freedesktop mesa
Meng Ruijie
-
2024/01/26
[FD] Multiple Vulnerabilities in Reprise License Manager 15.1 (CVE-2023-43183, CVE-2023-44031)
Rahim, Mohaiman via Fulldisclosure
-
2024/01/26
[FD] Yet another fork()/malloc() bomb in javascript + SIGILL in Chrome
Georgi Guninski
-
2024/01/26
[FD] TrojanSpy Win32 Nivdort / Insecure Permissions - EoP (SYSTEM)
malvuln
-
2024/01/26
[FD] APPLE-SA-01-22-2024-9 tvOS 17.3
Apple Product Security via Fulldisclosure
-
2024/01/26
[FD] APPLE-SA-01-22-2024-8 watchOS 10.3
Apple Product Security via Fulldisclosure
-
2024/01/26
[FD] APPLE-SA-01-22-2024-7 macOS Monterey 12.7.3
Apple Product Security via Fulldisclosure
-
2024/01/26
[FD] APPLE-SA-01-22-2024-6 macOS Ventura 13.6.4
Apple Product Security via Fulldisclosure
-
2024/01/26
[FD] APPLE-SA-01-22-2024-5 macOS Sonoma 14.3
Apple Product Security via Fulldisclosure
-
2024/01/26
[FD] APPLE-SA-01-22-2024-4 iOS 15.8.1 and iPadOS 15.8.1
Apple Product Security via Fulldisclosure
-
2024/01/26
[FD] APPLE-SA-01-22-2024-3 iOS 16.7.5 and iPadOS 16.7.5
Apple Product Security via Fulldisclosure
-
2024/01/26
[FD] APPLE-SA-01-22-2024-2 iOS 17.3 and iPadOS 17.3
Apple Product Security via Fulldisclosure
-
2024/01/26
[FD] APPLE-SA-01-22-2024-1 Safari 17.3
Apple Product Security via Fulldisclosure
-
2024/01/26
[FD] [Full Disclosure] CVE-2024-22903: Unpatched Command Injection in Vinchin Backup & Recovery Versions 7.2 and Earlier
Valentin Lobstein via Fulldisclosure
-
2024/01/26
[FD] [Full Disclosure] CVE-2024-22902: Default Root Credentials in Vinchin Backup & Recovery v7.2 and Earlier
Valentin Lobstein via Fulldisclosure
-
2024/01/26
[FD] [Full Disclosure] CVE-2024-22901: Default MYSQL Credentials in Vinchin Backup & Recovery v7.2 and Earlier
Valentin Lobstein via Fulldisclosure
-
2024/01/26
[FD] [Full Disclosure] CVE-2024-22899: Unpatched Command Injection in Vinchin Backup and Recovery Versions 7.2 and Earlier
Valentin Lobstein via Fulldisclosure
-
2024/01/26
[FD] [Full Disclosure] CVE-2024-22900: Unpatched Command Injection in Vinchin Backup and Recovery Versions 7.2 and Earlier
Balgogan via Fulldisclosure
-
2024/01/26
[FD] [SBA-ADV-20200707-02] CVE-2020-36772: CloudLinux CageFS 7.0.8-2 or below Insufficiently Restricted Proxy Command
SBA - Advisory via Fulldisclosure
-
2024/01/26
[FD] [SBA-ADV-20200707-01] CVE-2020-36771: CloudLinux CageFS 7.1.1-1 or below Token Disclosure
SBA - Advisory via Fulldisclosure
-
2024/01/18
Re: [FD] ODR violation in Redis Raft
Jeffrey Walton
-
2024/01/18
[FD] Minor firefox DoS - semi silently polluting ~/Downloads with files (part 2)
Georgi Guninski
-
2024/01/17
[FD] Legends of IdleOn - I Reject Your RNG And Substitute My Own
Soatok Dreamseeker
-
2024/01/17
[FD] Buffer over-read in dtls_sha256_update of TinyDTLS
Meng Ruijie
-
2024/01/17
[FD] Misues same epoch number within TCP lifetime in TinyDTLS
Meng Ruijie
-
2024/01/17
[FD] Assertion failure in check_certificate_request() of TinyDTLS
Meng Ruijie
-
2024/01/17
[FD] Buffer over-read in TinyDTLS
Meng Ruijie
-
2024/01/17
[FD] Infinite loop leading to buffer overflow in TinyDTLS
Meng Ruijie
-
2024/01/17
[FD] Mishandle epoch number in TinyDTLS servers
Meng Ruijie
-
2024/01/17
[FD] Incorrect handshake in TinyDTLS
Meng Ruijie
-
2024/01/17
[FD] ODR violation in Redis Raft
Meng Ruijie
-
2024/01/14
[FD] Backdoor.Win32 Carbanak (Anunak) / Named Pipe Null DACL
malvuln
-
2024/01/14
[FD] CyberDanube Security Research 20240109-0 | Multiple Vulnerabilities in JetNet Series
Thomas Weber via Fulldisclosure
-
2024/01/14
Re: [FD] cpio privilege escalation vulnerability via setuid files in cpio archive
Harry Sintonen via Fulldisclosure
-
2024/01/14
Re: [FD] cpio privilege escalation vulnerability via setuid files in cpio archive
Harry Sintonen via Fulldisclosure
-
2024/01/14
Re: [FD] cpio privilege escalation vulnerability via setuid files in cpio archive
Georgi Guninski
-
2024/01/14
Re: [FD] cpio privilege escalation vulnerability via setuid files in cpio archive
fulldisclosure
-
2024/01/14
Re: [FD] [SBA-ADV-20220120-01] MOKOSmart MKGW1 Gateway Improper Session Management
SBA - Advisory via Fulldisclosure
-
2024/01/08
[FD] cpio privilege escalation vulnerability via setuid files in cpio archive
Georgi Guninski
-
2024/01/08
[FD] OXAS-ADV-2023-0006: OX App Suite Security Advisory
Martin Heiland via Fulldisclosure
-
2024/01/08
[FD] OXAS-ADV-2023-0005: OX App Suite Security Advisory
Martin Heiland via Fulldisclosure
-
2024/01/08
[FD] SSH-Snake: Automated SSH-Based Network Traversal
Joshua Rogers
-
2024/01/04
[FD] RansomLord v2 - Anti-Ransomware Exploitation Tool / New Release
hyp3rlinx
-
2024/01/04
[FD] Windows PowerShell Single Quote Code Execution / Event Log Bypass
hyp3rlinx
-
2023/12/26
[FD] [ES2023-02] FreeSWITCH susceptible to Denial of Service via DTLS Hello packets during call initiation
Sandro Gauci
-
2023/12/19
[FD] asterisk release 20.5.1
Asterisk Development Team via Fulldisclosure
-
2023/12/19
[FD] asterisk release 18.20.1
Asterisk Development Team via Fulldisclosure
-
2023/12/19
[FD] CORRECTED asterisk release 21.0.1
Asterisk Development Team
-
2023/12/19
[FD] CORRECTED asterisk release certified-18.9-cert6
Asterisk Development Team
-
2023/12/19
[FD] [ES2023-03] RTPEngine susceptible to Denial of Service via DTLS Hello packets during call initiation
Sandro Gauci
-
2023/12/19
[FD] [ES2023-01] Asterisk susceptible to Denial of Service via DTLS Hello packets during call initiation
Sandro Gauci
-
2023/12/19
[FD] [KIS-2023-14] PKP-WAL <= 3.4.0-3 (NativeImportExportPlugin) Remote Code Execution Vulnerability
Egidio Romano
-
2023/12/19
[FD] [SBA-ADV-20220120-01] MOKOSmart MKGW1 Gateway Improper Session Management
SBA - Advisory via Fulldisclosure
-
2023/12/19
[FD] APPLE-SA-12-19-2023-1 macOS Sonoma 14.2.1
Apple Product Security via Fulldisclosure
-
2023/12/19
[FD] Disclosure of CVE-2023-50917: RCE Vulnerability in MajorDoM
Balgogan via Fulldisclosure
-
2023/12/12
[FD] SEC Consult SA-20231211-0 :: Local Privilege Escalation via MSI installer in PDF24 Creator
SEC Consult Vulnerability Lab, Research via Fulldisclosure
-
2023/12/12
[FD] SEC Consult SA-20231206 :: Kiosk Escape Privilege Escalation in One Identity Password Manager Secure Password Extension
SEC Consult Vulnerability Lab, Research via Fulldisclosure
-
2023/12/12
[FD] SEC Consult SA-20231205 :: Argument injection leading to unauthenticated RCE and authentication bypass in Atos Unify OpenScape Session Border Controller (SBC), Branch, BCF
SEC Consult Vulnerability Lab, Research via Fulldisclosure
-
2023/12/12
[FD] APPLE-SA-12-11-2023-8 watchOS 10.2
Apple Product Security via Fulldisclosure
-
2023/12/12
[FD] APPLE-SA-12-11-2023-7 tvOS 17.2
Apple Product Security via Fulldisclosure
-
2023/12/12
[FD] APPLE-SA-12-11-2023-6 macOS Monterey 12.7.2
Apple Product Security via Fulldisclosure
-
2023/12/12
[FD] APPLE-SA-12-11-2023-5 macOS Ventura 13.6.3
Apple Product Security via Fulldisclosure
-
2023/12/12
[FD] APPLE-SA-12-11-2023-4 macOS Sonoma 14.2
Apple Product Security via Fulldisclosure
-
2023/12/12
[FD] APPLE-SA-12-11-2023-3 iOS 16.7.3 and iPadOS 16.7.3
Apple Product Security via Fulldisclosure
-
2023/12/12
[FD] APPLE-SA-12-11-2023-2 iOS 17.2 and iPadOS 17.2
Apple Product Security via Fulldisclosure
-
2023/12/12
[FD] APPLE-SA-12-11-2023-1 Safari 17.2
Apple Product Security via Fulldisclosure
-
2023/12/12
[FD] APPLE-SA-11-30-2023-3 macOS Sonoma 14.1.2
Apple Product Security via Fulldisclosure
-
2023/12/12
[FD] APPLE-SA-11-30-2023-2 iOS 17.1.2 and iPadOS 17.1.2
Apple Product Security via Fulldisclosure
-
2023/12/12
[FD] APPLE-SA-11-30-2023-1 Safari 17.1.2
Apple Product Security via Fulldisclosure
-
2023/12/12
[FD] [KIS-2023-13] ISPConfig <= 3.2.11 (language_edit.php) PHP Code Injection Vulnerability
Egidio Romano
-
2023/12/12
[FD] [CFP] BSides San Francisco - May 2024
BSidesSF CFP via Fulldisclosure
-
2023/12/12
[FD] Microsoft Defender Anti-Malware PowerShell API - Arbitrary Code Execution
hyp3rlinx
-
2023/11/27
[FD] Senec Inverters Home V1, V2, V3 Home & Hybrid Use of Hard-coded Credentials - CVE-2023-39169
Phos4Me via Fulldisclosure
-
2023/11/27
[FD] [SYSS-2023-019] SmartNode SN200 - Unauthenticated OS Command Injection
Maurizio Ruchay via Fulldisclosure
-
2023/11/27
[FD] CVE-2023-46307
Kevin
-
2023/11/27
[FD] CVE-2023-46307
Kevin
-
2023/11/27
[FD] Survey on usage of security advisories
Aurich, Janik
-
2023/11/27
[FD] [CVE-2023-46386, CVE-2023-46387, CVE-2023-46388, CVE-2023-46389] Multiple vulnerabilities in Loytec products (3)
Chizuru Toyama
-
2023/11/27
[FD] [CVE-2023-46383, CVE-2023-46384, CVE-2023-46385] Multiple vulnerabilities in Loytec products (2)
Chizuru Toyama
-
2023/11/12
[FD] Senec Inverters Home V1, V2, V3 Home & Hybrid Exposure of the Username to an Unauthorized Actor - CVE-2023-39168
Phos4Me via Fulldisclosure
-
2023/11/12
[FD] Senec Inverters Home V1, V2, V3 Home & Hybrid Cleartext Transmission of Authentication Credentials - CVE-2023-39172
Phos4Me via Fulldisclosure
-
2023/11/12
[FD] Senec Inverters Home V1, V2, V3 Home & Hybrid Publicly Accessible Default Credentials- CVE-2023-39170
Phos4Me via Fulldisclosure
-
2023/11/12
[FD] Senec Inverters Home V1, V2, V3 Home & Hybrid Publicly Accessible Management Interface “Local GUI”- CVE-2023-39171
Phos4Me via Fulldisclosure
-
2023/11/12
[FD] HNS-2023-03 - HN Security Advisory - Multiple vulnerabilities in Zephyr RTOS
Marco Ivaldi
-
2023/11/10
[FD] [CVE-2023-46380, CVE-2023-46381, CVE-2023-46382] Multiple vulnerabilities in Loytec products
Chizuru Toyama
-
2023/10/27
[FD] LKX-2023-001 VinChin VMWare Backup
Gregory Boddin via Fulldisclosure
-
2023/10/27
[FD] [KIS-2023-12] phpFox <= 4.8.13 (redirect) PHP Object Injection Vulnerability
Egidio Romano
-
2023/10/26
[FD] [KIS-2023-11] SugarCRM <= 13.0.1 (set_note_attachment) Unrestricted File Upload Vulnerability
Egidio Romano
-
2023/10/26
[FD] [KIS-2023-10] SugarCRM <= 13.0.1 (GetControl) Server-Side Template Injection Vulnerability
Egidio Romano
-
2023/10/25
[FD] APPLE-SA-10-25-2023-9 Safari 17.1
Apple Product Security via Fulldisclosure
-
2023/10/25
[FD] APPLE-SA-10-25-2023-5 macOS Ventura 13.6.1
Apple Product Security via Fulldisclosure
-
2023/10/25
[FD] APPLE-SA-10-25-2023-8 watchOS 10.1
Apple Product Security via Fulldisclosure
-
2023/10/25
[FD] APPLE-SA-10-25-2023-4 macOS Sonoma 14.1
Apple Product Security via Fulldisclosure
-
2023/10/25
[FD] APPLE-SA-10-25-2023-2 iOS 16.7.2 and iPadOS 16.7.2
Apple Product Security via Fulldisclosure
-
2023/10/25
[FD] APPLE-SA-10-25-2023-7 tvOS 17.1
Apple Product Security via Fulldisclosure
-
2023/10/25
[FD] APPLE-SA-10-25-2023-6 macOS Monterey 12.7.1
Apple Product Security via Fulldisclosure
-
2023/10/25
[FD] APPLE-SA-10-25-2023-3 iOS 15.8 and iPadOS 15.8
Apple Product Security via Fulldisclosure
-
2023/10/25
[FD] APPLE-SA-10-25-2023-1 iOS 17.1 and iPadOS 17.1
Apple Product Security via Fulldisclosure
-
2023/10/25
[FD] Ringzer0 Bootstrap24 CFP Now Open
Steve Lord
-
2023/10/16
[FD] Defense in depth -- the Microsoft way (part 86): shipping rotten software to billions of unsuspecting customers
Stefan Kanthak
-
2023/10/16
[FD] APPLE-SA-10-10-2023-1 iOS 16.7.1 and iPadOS 16.7.1
Apple Product Security via Fulldisclosure
-
2023/10/16
[FD] XNSoft Nconvert 7.136 - Multiple Vulnerabilities
michele
-
2023/10/16
[FD] Squid Caching Proxy Security Audit: 55 Vulnerabilities, 35 0days.
Joshua Rogers
-
2023/10/05
[FD] SEC Consult SA-20231005 :: Open Redirect in SAP® BSP Test Application it00 (Bypass for CVE-2020-6215 Patch)
SEC Consult Vulnerability Lab, Research via Fulldisclosure
-
2023/10/05
[FD] APPLE-SA-2023-10-04-1 iOS 17.0.3 and iPadOS 17.0.3
Apple Product Security via Fulldisclosure
-
2023/10/05
[FD] CVE-2023-4911: Local Privilege Escalation in the glibc's ld.so
Qualys Security Advisory via Fulldisclosure
-
2023/10/02
[FD] APPLE-SA-09-26-2023-9 tvOS 17
Apple Product Security via Fulldisclosure
-
2023/10/02
[FD] APPLE-SA-09-26-2023-6 Xcode 15
Apple Product Security via Fulldisclosure
-
2023/10/02
[FD] APPLE-SA-09-26-2023-5 Additional information for APPLE-SA-2023-09-21-7 macOS Monterey 12.7
Apple Product Security via Fulldisclosure
-
2023/10/02
[FD] APPLE-SA-09-26-2023-4 Additional information for APPLE-SA-2023-09-21-6 macOS Ventura 13.6
Apple Product Security via Fulldisclosure
-
2023/10/02
[FD] APPLE-SA-09-26-2023-3 Additional information for APPLE-SA-2023-09-21-3 iOS 16.7 and iPadOS 16.7
Apple Product Security via Fulldisclosure
-
2023/10/02
[FD] APPLE-SA-09-26-2023-1 Safari 17
Apple Product Security via Fulldisclosure
-
2023/10/02
[FD] SEC Consult SA-20230927-0 :: Multiple Vulnerabilities in SAP® Enable Now Manager
SEC Consult Vulnerability Lab, Research via Fulldisclosure
-
2023/10/02
[FD] SEC Consult SA-20230925-0 :: Stored Cross-Site Scripting in mb Support broker management solution openVIVA c2
SEC Consult Vulnerability Lab, Research via Fulldisclosure