**
Title: Synology DSM multiple vulnerabilities
Version affected: = 4.3-3776
Vendor: Synology
Discovered by: Andrea Fabrizi
Email: andrea.fabr...@gmail.com
Web: http://www.andreafabrizi.it
Twitter: @andreaf83
Status: unpatched
**
Title: Samsung DVR authentication bypass
Version affected: firmware version = 1.10
Vendor: Samsung - www.samsung-security.com
Discovered by: Andrea Fabrizi
Email: andrea.fabr...@gmail.com
Web: http://www.andreafabrizi.it
Twitter
**
Title: Buffalo TeraStation TS-Series multiple vulnerabilities
Version affected: firmware version = 1.5.7
Vendor: http://www.buffalotech.com/products/network-storage
Discovered by: Andrea Fabrizi
Email: andrea.fabr...@gmail.com
Web
**
Vulnerability: Multiple Path Injection
Product: QNAP Turbo NAS
Vendor: QNAP
Version affected: = 3.7.3 build 20120801
Status: Unpatched
Website: http://web.qnap.com/pro_detail_feature.asp?p_id=202
Discovered by: Andrea Fabrizi
Email
**
Vuln: Path Traversal
Application: Sentinel Log Manager
Vendor: Novell
Version affected: = 1.2.0.1
Website: http://www.novell.com/products/sentinel-log-manager/
Discovered By: Andrea Fabrizi
Email: andrea.fabr...@gmail.com
Web: http
**
Application: VirtueMart
Version affected: = 1.1.6
Website: http://www.virtuemart.net/
Discovered By: Andrea Fabrizi
Email: andrea.fabr...@gmail.com
Web: http://www.andreafabrizi.it
Vuln: Blind SQL Injection
**
Application: PhpShop
Version affected: 0.8.1
Website: http://www.phpshop.org/
Discovered By: Andrea Fabrizi
Email: andrea.fabr...@gmail.com
Web: http://www.andreafabrizi.it
Vuln: Multiple Vulnerabilities
**
Product: Everfocus EDR1600
Version affected: all
Website: http://www.everfocus.com/
Discovered By: Andrea Fabrizi
Email: andrea.fabr...@gmail.com
Web: http://www.andreafabrizi.it
Vuln: remote DVR authentication bypass
**
Product: 3Com OfficeConnect Firewall/Router
Website: http://www.3com.com/
Discovered By: Andrea Fabrizi
Email: andrea.fabr...@gmail.com
Web: http://www.andreafabrizi.it
Vuln: remote command execution and password disclosure
**
Application: Snitz Forums 2000
Version affected: 3.4.07
Website: http://forum.snitz.com/
Discovered By: Andrea Fabrizi
Email: andrea.fabr...@gmail.com
Web: http://www.andreafabrizi.it
Vuln: Multiple Cross-Site Scripting
**
Application: Docebo
Version affected: 3.6.0.3
Website: http://www.docebo.com
Discovered By: Andrea Fabrizi
Email: andrea.fabr...@gmail.com
Web: http://www.andreafabrizi.it
Vuln: Multiple SQL-Injection Vulnerabilities
11 matches
Mail list logo