Full Disclosure
Posted by Vulnerability Lab on Jun 19
Document Title:
===============
Ebay Magento Bug Bounty #10 – Persistent Filename Vulnerability
References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1457
eBay Inc. Bug Bounty Program ID: EIBBP-31603
Video: https://www.youtube.com/watch?v=WffsHd8pibE
Release Date:
=============
2015-06-16
Vulnerability Laboratory ID (VL-ID):
====================================
1457
Common Vulnerability Scoring…
Posted by Vulnerability Lab on Jun 19
Document Title:
===============
Ebay Magento Bug Bounty #17 – Client Side Cross Site Scripting Web Vulnerability
References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1473
EIBBP-31541
Release Date:
=============
2015-06-15
Vulnerability Laboratory ID (VL-ID):
====================================
1473
Common Vulnerability Scoring System:
====================================
3
Product & Service…
Posted by Vulnerability Lab on Jun 19
Document Title:
===============
ZTE ZXV10 W300 v3.1.0c_DR0 – UI Session Delete Vulnerability
References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1522
Release Date:
=============
2015-06-16
Vulnerability Laboratory ID (VL-ID):
====================================
1522
Common Vulnerability Scoring System:
====================================
6
Product & Service Introduction:…
Posted by Vulnerability Lab on Jun 19
Document Title:
===============
ManageEngine SupportCenter Plus 7.90 – Multiple Vulnerabilities
References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1501
Release Date:
=============
2015-06-19
Vulnerability Laboratory ID (VL-ID):
====================================
1501
Common Vulnerability Scoring System:
====================================
6.9
Product & Service Introduction:…
Posted by Zach C on Jun 19
After a brief intermission last week, the Broken, Abandoned series is
back with part 8. In this part, we switch back to analyzing the
Netgear R6200 upnpd, since that’s the ultimate focus of this series.
The mystery firmware header gets a name. Also the buffer overflow
discussed in part 5 is back, this time without authentication.
Here’s the link to part 8:
http://shadow-file.blogspot.com/2015/06/abandoned-part-08.html
For those…
Posted by Cosmin Maier on Jun 19
[-] Description
A malicious user can be able to bypass some of SpiderOak filters and retrieve sensitive information from database.
Revealing system data helps an adversary learn about the system and form a plan of attack.
[-] Proof-of-Concept
Full report available on YouTube: http://youtu.be/R_aT4kgB3PI <http://youtu.be/R_aT4kgB3PI>
[-] Notes
At the time this alert was first published, SpiderOak patched vulnerability and customers are…
Posted by Brian Hysell on Jun 19
Title: Authentication bypass in OpenEMR
CVE Reference: CVE-2015-4453
Product: OpenEMR
Vendor: http://www.open-emr.org/
Tested versions: 4.2.0 and 4.2.0 patch 1
Affected versions: 2.8.3 to 4.2.0 patch 1
Status: Fixed by vendor
Reported by: Brian D. Hysell
Details:
A bug in OpenEMR’s implementation of “fake register_globals” in
interface/globals.php allows an attacker to bypass authentication by
sending ignoreAuth=1 as a GET or…
Posted by zise . shi on Jun 17
[CVE-2015-4553]Dedecms variable coverage leads to getshell
#############################################################################
#
# DBAPPSECURITY LIMITED http://www.dbappsecurity.com.cn/
#
#############################################################################
#
# CVE ID: CVE-2015-4553
# Subject: Dedecms variable coverage leads to getshell
# Author: zise
# Date: 06.17.2015…
Posted by Pierre-d on Jun 17
Hello everyone,
we’re very pleased to announce that NorthSec 2015 Conference Recordings are
now available for free on YouTube, including talks about Privacy, Malware,
Reverse Engineering, Cryptography, Bitcoins and many more :
https://www.youtube.com/playlist?list=PLuUtcRxSUZUpQAa54H6PKkfX6A48ruzhh
Speakers slides are also being made available at the following adress :
https://www.nsec.io/2015/05/nsec15-speakers-slides/
We had an…
Posted by cosmin0maier on Jun 15
Web Application Security Report
m.ebay.com Multiple Vulnerabilities
[1]: Cross-site Scripting – Stored XSS
The iOS, Android application and m.ebay.com website has a section called
“Followed Search” These followed search, by default, are pre-defined links to sections of eBay. It is possible for a
user to edit the list of followed search and to add their own
[2]: HTML Injection
Full report available:…