[FD] CVE-2016-4803 dotCMS - Email Header Injection

Title: CVE-2016-4803 dotCMS - Email Header Injection Credit: Elar Lang / https://security.elarlang.eu Vulnerability: Email Header Injection Vulnerable version: before 3.5 / 3.3.2 CVE: CVE-2016-4803 Vendor: dotCMS (http://dotcms.com/) # Description dotCMS has an email sending functionality at

[FD] Reflected XSS in LinkedIn

Title: Reflected XSS in LinkedIn Credit: Elar Lang / https://security.elarlang.eu Vulnerability: Reflected XSS Vendor: LinkedIn (https://www.linkedin.com/) # Background LinkedIn had reflected XSS vulnerability. It was at the end of 2013. I made fulldisclosure now (middle of 2016) to point out

[FD] CVE-2016-8600 dotCMS - CAPTCHA bypass by reusing valid code

Title: CVE-2016-8600 dotCMS - CAPTCHA bypass by reusing valid code Credit: Elar Lang / https://security.elarlang.eu Vulnerability: CAPTCHA bypass by re-using last loaded valid CAPTCHA code Vulnerable version: before 3.6.0 CVE: CVE-2016-8600 Vendor/Product: dotCMS (http://dotcms.com

[FD] Multiple SQL injection vulnerabilities in dotCMS (8x CVE)

Title: Multiple SQL injection vulnerabilities in dotCMS (8x CVE) Credit: Elar Lang / https://security.elarlang.eu Vendor/Product: dotCMS (http://dotcms.com/) Vulnerability: SQL injection Vulnerable version: before 3.5; 3.3.1 and 3.3.2 (depends on CVE) CVE: CVE-2016-8902, CVE-2016-8903, CVE-2016

Re: [FD] Multiple SQL injection vulnerabilities in dotCMS (8x CVE)

On Tue, Nov 1, 2016 at 5:05 PM, Brandon Perry wrote: > >> On Oct 31, 2016, at 2:41 PM, Elar Lang wrote: >> >> Title: Multiple SQL injection vulnerabilities in dotCMS (8x CVE) >> Credit: Elar Lang / https://security.elarlang.eu >> Vendor/Product: dotCMS (http://d

[FD] SQL injection in Joomla extension DT Register

Title: SQL injection in Joomla extension DT Register Credit: Elar Lang / https://security.elarlang.eu Vulnerability: SQL injection Vulnerable version: before 3.1.12 (Joomla 3.x) / 2.8.18 (Joomla 2.5) CVE: pending Full Disclosure URL: https://security.elarlang.eu/sql-injection-in-joomla-extension

Re: [FD] SQL injection in Joomla extension DT Register

Update: 2016-12-16: CVE-2016-1000271 assigned by DWF https://security.elarlang.eu/sql-injection-in-joomla-extension-dt-register.html On Tue, Dec 13, 2016 at 10:06 AM, Elar Lang wrote: > Title: SQL injection in Joomla extension DT Register > Credit: Elar Lang / https://security.elarl

[FD] Multiple SQL injection vulnerabilities in dotCMS (2x CVE)

Title: Multiple SQL injection vulnerabilities in dotCMS (2x CVE) Credit: Elar Lang / https://security.elarlang.eu Vendor/Product: dotCMS (http://dotcms.com/) Vulnerability: SQL injection Vulnerable version: before 4.1.1. Theoretically would be fixed in 3.7.2 (not released yet) CVE: CVE-2016-10007

[FD] CVE-2018-18809 Path traversal in Tibco JasperSoft

Title: CVE-2018-18809 Path traversal in Tibco JasperSoft Credit: Elar Lang / https://security.elarlang.eu Vendor/Product: Tibco JasperSoft (https://www.jaspersoft.com/) Vulnerability: Path traversal CVE: CVE-2018-18809 # Path traversal Vulnerability is in reportresource/reportresource/ service