[FD] Stored XSS in 4images <= v1.7.11

2015-09-25 Thread Manuel Garcia Cardenas
= MGC ALERT 2015-001 - Original release date: September 08, 2015 - Last revised: September 24, 2015 - Discovered by: Manuel Garcia Cardenas - Severity: 4,8/10 (CVSS Base Score) = I. VULNERABILITY

[FD] RomPager ShellShock RCE Vulnerability?

2015-09-25 Thread 1n3
Gr33tz. I'm disclosing details for a potential 0day RCE vulnerability in a number of common routers which may allow full control of affected devices. I haven't found an existing vulnerability for this and this appears to be a new trend in my ModSecurity logs. Hoping to get some feedback from the

[FD] VuFind 1.0 Web Application Reflected XSS (Cross-site Scripting) 0-Day Bug Security Issue

2015-09-25 Thread Jing Wang
*VuFind 1.0 **Web Application **Reflected XSS (Cross-site Scripting) 0-Day Bug Security Issue* Exploit Title: VuFind Results? parameter Reflected XSS Web Security Vulnerability Product: VuFind Vendor: VuFind Vulnerable Versions: 1.0 Tested Version: 1.0 Advisory Publication: September 20, 2015

Re: [FD] An iOS oversight: exploiting device trust and backups

2015-09-25 Thread Luis 'Pope' Gómez
You make an interesting point here, David. About this topic, I would recommend this brilliant paper by Mr. Zdziarski: http://www.zdziarski.com/blog/wp-content/uploads/2014/08/Zdziarski-iOS-DI-2014.pdf I proposed a software solution to apply various mitigations in jailbroken devices; including:

[FD] CVE-2015-7323 - Secure Meeting (Pulse Collaboration) issue may allow authenticated users to bypass meeting authorization

2015-09-25 Thread Profundis Labs
Profundis Labs Security Advisory https://profundis-labs.com/advisories/CVE-2015-7323.txt Product: Junos Pulse Secure Meeting Secure Meeting is a part of the Junos Puls Collaboration software, which allows you to organize and holding virtual meetings with internal

[FD] CVE-2015-7323 - Secure Meeting (Pulse Collaboration) issue may allow authenticated users to bypass meeting authorization

2015-09-25 Thread Profundis Labs
Profundis Labs Security Advisory https://profundis-labs.com/advisories/CVE-2015-7323.txt Product: Junos Pulse Secure Meeting Secure Meeting is a part of the Junos Puls Collaboration software, which allows you to organize and holding virtual meetings with internal

[FD] CVE-2015-5076 - Vulnerability title: Reflective XSS In X2Engine Inc. X2Engine

2015-09-25 Thread Portcullis Advisories
Vulnerability title: Reflective XSS In X2Engine Inc. X2Engine CVE: CVE-2015-5076 Vendor: X2Engine Inc. Product: X2Engine Affected version: 4.2 Fixed version: 5.2 Reported by: Simone Quatrini Details: It was discovered that the web application was vulnerable to reflective Cross-Site Scripting

[FD] CVE-2015-5074 - Arbitrary File Upload In X2Engine Inc. X2Engine

2015-09-25 Thread Portcullis Advisories
Vulnerability title: Arbitrary File Upload In X2Engine Inc. X2Engine CVE: CVE-2015-5074 Vendor: X2Engine Inc. Product: X2Engine Affected version: 4.2 Fixed version: 5.2 Reported by: Simone Quatrini Details: It was discovered that authenticated users were able to upload files of any type

[FD] CVE-2015-5075 - Cross-Site Request Forgery In X2Engine Inc. X2Engine

2015-09-25 Thread Portcullis Advisories
Vulnerability title: Cross-Site Request Forgery In X2Engine Inc. X2Engine CVE: CVE-2015-5075 Vendor: X2Engine Inc. Product: X2Engine Affected version: 4.2 Fixed version: 5.2 Reported by: Simone Quatrini Details: It was discovered that no protection against Cross-site Request Forgery attacks was