[FD] HP SimplePass Local Privilege Escalation

2017-05-22 Thread Rehan Ahmed
# Vulnerability Title: HP SimplePass Local Privilege Escalation # Advisory Release Date: 05/18/2017 # Credit: Discovered By Rehan Ahmed # Contact: knight_re...@hotmail.com # Severity Level: Medium # Type: Local # Tested Platform: Windows 8 & 10 x64 # Vendor: HP Inc. # Vendor Site:

[FD] OrangeHRM Blind SQL Injection XSS Vulnerabilities

2015-04-11 Thread Rehan Ahmed
/13/2015 Again Vendor Contacted : 03/04/2015 Vendor Response: No Response Advisory Release : 04/10/2015 VIII.Credits Discovered by Rehan Ahmed knight_re...@hotmail.com

[FD] Chamilo LMS 1.9.10 Multiple XSS CSRF Vulnerabilities

2015-03-18 Thread Rehan Ahmed
VIII.Credits Discovered by Rehan Ahmed knight_re...@hotmail.com ___ Sent through the Full Disclosure mailing list https://nmap.org/mailman/listinfo

[FD] Crushftp 7.2.0 - Multiple CSRF XSS Vulnerabilities

2015-02-18 Thread Rehan Ahmed
I. Overview Multiple CSRF Cross-Site Scripting (XSS) vulnerabilities have been identified in Crushftp 7.2.0 (Web Interface) on default configuration. These vulnerabilities allows