[FD] CFP: AIPR2015 China - Artificial Intelligence and Pattern Recognition

2014-11-14 Thread Hazel Ann
The Fourth International Conference on Informatics Applications (ICIA2015) July 20-22, 2015 » Takamatsu, Japan Kagawa University Venue: Takamatsu Symbol Tower http://sdiwc.net/conferences/icia2015/ icia2...@sdiwc.net All registered papers will be included in SDIWC Digital Library

[FD] Google DoubleClick.net(Advertising) System URL Redirection Vulnerabilities Can be Used by Spammers

2014-11-14 Thread Jing Wang
Google DoubleClick.net(Advertising) System URL Redirection Vulnerabilities Can be Used by Spammers Although Google does not include Open Redirect vulnerabilities in its bug bounty program, its preventive measures against Open Redirect attacks have been quite thorough and effective to date.

[FD] Bypass Google Open Redirect Filter Based on Googleads.g.doubleclick.net

2014-11-14 Thread Jing Wang
Bypass Google Open Redirect Filter Based on Googleads.g.doubleclick.net http://googleads.g.doubleclick.net/ -- Google Covert Redirect Vulnerability Based on Googleads.g.doubleclick.net http://googleads.g.doubleclick.net/ The vulnerability exists at Logout? page with continue parameter, i.e.

[FD] CVE-2014-7290 Atlas Systems Aeon XSS (Cross-Site Scripting) Vulnerability

2014-11-14 Thread Jing Wang
CVE-2014-7290 Atlas Systems Aeon XSS (Cross-Site Scripting) Vulnerability Exploit Title: Atlas Systems Aeon XSS Vulnerability Product: Aeon Vendor: Atlas Systems Vulnerable Versions: 3.6 3.5 Tested Version: 3.6 Advisory Publication: Nov 12, 2014 Latest Update: Nov 12, 2014 Vulnerability Type:

[FD] Prey Anti-Theft for Android missing SSL certificate validation [STIC-2014-0731]

2014-11-14 Thread Programa STIC
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Fundación Dr. Manuel Sadosky - Programa STIC Advisory www.fundacionsadosky.org.ar Prey Anti-Theft for Android missing SSL certificate validation 1. *Advisory Information* Title: Prey Anti-Theft for Android missing SSL

[FD] CVE-2014-8681 Blind SQL Injection in Gogs label search

2014-11-14 Thread Timo Schmid
-BEGIN PGP SIGNED MESSAGE- Hash: RIPEMD160 Blind SQL Injection in Gogs label search Researcher: Timo Schmid tsch...@ernw.de Description === Gogs(Go Git Service) is a painless self-hosted Git Service written in Go. (taken from [1]) It

[FD] CVE-2014-8683 XSS in Gogs Markdown Renderer

2014-11-14 Thread Timo Schmid
-BEGIN PGP SIGNED MESSAGE- Hash: RIPEMD160 XSS in Gogs Markdown Renderer = Researcher: Timo Schmid tsch...@ernw.de Description === Gogs(Go Git Service) is a painless self-hosted Git Service written in Go. (taken from [1]) It is very similiar to the

[FD] XSS Reflected in Page visualization agents in Pandora FMS v5.1SP1 - Revisión PC141031 (CVE-2014-8629)

2014-11-14 Thread William Costa
I. VULNERABILITY - XSS Reflected in Page visualization agents in Pandora FMS v5.1SP1 - Revisión PC141031 II. BACKGROUND Pandora FMS is the monitoring software chosen by several companies all around the world for managing their IT infrastructure. Besides ensuring high