Full Disclosure
Posted by Vulnerability Lab on Nov 07
Document Title:
===============
Edusson (Robotdon) BB – Client Side Cross Site Scripting Vulnerability
References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1871
Release Date:
=============
2016-11-04
Vulnerability Laboratory ID (VL-ID):
====================================
1871
Common Vulnerability Scoring System:
====================================
3.4
Product & Service Introduction:…
Posted by Vulnerability Lab on Nov 07
Document Title:
===============
Edusson (Robotdon) BB – Filter Bypass & Persistent Vulnerability
References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1870
Release Date:
=============
2016-11-03
Vulnerability Laboratory ID (VL-ID):
====================================
1870
Common Vulnerability Scoring System:
====================================
4.3
Product & Service Introduction:…
Posted by hyp3rlinx on Nov 06
[+] Credits: John Page aka hyp3rlinx
[+] Website: hyp3rlinx.altervista.org
[+] Source: http://hyp3rlinx.altervista.org/advisories/RAPID-PHP-EDITOR-REMOTE-CMD-EXEC.txt
[+] ISR: Apparition Security
Vendor:
======================www.rapidphpeditor.com
Product:
===============================
Rapid PHP Editor IDE
rapidphp2016.exe v14.1
Rapid PHP editor is a faster and more powerful PHP editor for Windows
combining features of a…
Posted by hyp3rlinx on Nov 06
[+] Credits: John Page aka hyp3rlinx
[+] Website: hyp3rlinx.altervista.org
[+] Source: http://hyp3rlinx.altervista.org/advisories/AXESSH-DENIAL-OF-SERVICE.txt
[+] ISR: ApparitionSec
Vendor:
============www.labf.com
Product:
=============
Axessh 4.2.2
Axessh is a SSH client. It is a superb terminal emulator/telnet client
for Windows. It provides SSH capabilities to Axessh without
sacrificing any of existing functionality. Furthermore,…
Posted by hyp3rlinx on Nov 06
[+] Credits: John Page aka hyp3rlinx
[+] Website: hyp3rlinx.altervista.org
[+] Source: http://hyp3rlinx.altervista.org/advisories/WINAXE-FTP-CLIENT-REMOTE-BUFFER-OVERFLOW.txt
[+] ISR: Apparition Security
Vendor:
============www.labf.com
Product:
================
WinaXe v7.7 FTP
The X Window System, SSH, TCP/IP, NFS, FTP, TFTP and Telnet software
are built and provided in the package.
All that you need to run remote UNIX and X…
Posted by Andrew Klaus on Nov 06
### Device Details
Vendor: Actiontec (Telus Branded)
Model: WCB3000N
Affected Firmware: v0.16.2.5
Device Manual: *http://static.telus.com/common/cms/files/internet/wifi_plus_extender.pdf
<http://static.telus.com/common/cms/files/internet/wifi_plus_extender.pdf>*
Reported: November 2015
Status: Fixed on newest pushed firmware version
CVE: Update is handled by the vendor, therefore no CVE needed.
The Telus Actiontec WCB3000N is a…
Posted by Michal Zalewski on Nov 05
IIRC, RFC 3986 “fixes” that, and so does https://url.spec.whatwg.org/.
/mz
Posted by Thomas Dickey on Nov 04
Actually, it does parse correctly. Go read RFC 1738.
What can be improved here is adding some warnings about a few of the cases
where users can be confused by legal URL syntax. I’m working on that.
Posted by Nic Wiswat on Nov 04
#################################################
Bypass Imperva by confusing HTTP Pollution Normalization Engine
#################################################
Author: Wiswat Aswamenakul
Environment: Tested with Imperva Version: 11.5 and Web Backend as IIS + ASP
Description:
One of technique that attackers use to bypass web application firewall is
to use HTTP pollution attack. The attack can be produced by sending
parameters with the same…
Posted by Dawid Golunski on Nov 04
CVE-2016-6664 / (Oracle)CVE-2016-5617
Vulnerability: MySQL / MariaDB / PerconaDB – Root Privilege Escalation
Discovered by:
Dawid Golunski
@dawid_golunski
https://legalhackers.com
MySQL-based databases including MySQL, MariaDB and PerconaDB are affected
by a privilege escalation vulnerability which can let attackers who have
gained access to mysql system user (for example through CVE-2016-6663)
to further escalate their privileges to root user…