Monthly Archives: October 2015

Full Disclosure

FreeYouTubeToMP3 Converter 4.0.1 – Buffer Overflow Vulnerability

Posted by Vulnerability Lab on Oct 09

Document Title:
===============
FreeYouTubeToMP3 Converter 4.0.1 – Buffer Overflow Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1613

Release Date:
=============
2015-10-06

Vulnerability Laboratory ID (VL-ID):
====================================
1613

Common Vulnerability Scoring System:
====================================
7.2

Product & Service Introduction:…

Full Disclosure

W150D Wireless N 150 ADSL2 Modem Router – Cross Site Request Forgery Vulnerability

Posted by Vulnerability Lab on Oct 09

Document Title:
===============
W150D Wireless N 150 ADSL2 Modem Router – Cross Site Request Forgery Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1612

Release Date:
=============
2015-10-06

Vulnerability Laboratory ID (VL-ID):
====================================
1612

Common Vulnerability Scoring System:
====================================
2.4

Product & Service Introduction:…

Full Disclosure

PayPal Inc Bug Bounty #119 – URL Redirect Web Vulnerability

Posted by Vulnerability Lab on Oct 09

Document Title:
===============
PayPal Inc Bug Bounty #119 – URL Redirect Web Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1610

Release Date:
=============
2015-10-01

Vulnerability Laboratory ID (VL-ID):
====================================
1610

Common Vulnerability Scoring System:
====================================
2.4

Product & Service Introduction:…

Full Disclosure

WebComIndia CMS 2015Q4 – Auth Bypass Vulnerability

Posted by Vulnerability Lab on Oct 09

Document Title:
===============
WebComIndia CMS 2015Q4 – Auth Bypass Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1614

Release Date:
=============
2015-10-07

Vulnerability Laboratory ID (VL-ID):
====================================
1614

Common Vulnerability Scoring System:
====================================
8.3

Product & Service Introduction:
===============================…

NVD

CVE-2015-5780 (safari)

The Safari Extensions implementation in Apple Safari before 9 does not require user confirmation before replacing an installed extension, which has unspecified impact and attack vectors.