Full Disclosure
Posted by Summer of Pwnage on Aug 15
————————————————————————
Cross-Site Request Forgery in Photo Gallery WordPress Plugin allows
deleting of images
————————————————————————
Umit Aksu, July 2016
————————————————————————
Abstract
————————————————————————
A Cross-Site Request Forgery…
Posted by Summer of Pwnage on Aug 15
————————————————————————
Cross-Site Request Forgery in Photo Gallery WordPress Plugin allows
deleting of galleries
————————————————————————
Umit Aksu, July 2016
————————————————————————
Abstract
————————————————————————
A Cross-Site Request Forgery…
Posted by Summer of Pwnage on Aug 15
————————————————————————
Cross-Site Request Forgery in Photo Gallery WordPress Plugin allows
adding of images
————————————————————————
Umit Aksu, July 2016
————————————————————————
Abstract
————————————————————————
A Cross-Site Request Forgery vulnerability…
Posted by Vulnerability Lab on Aug 15
Document Title:
===============
PayPal Inc BB #127 – 2FA Bypass Vulnerability
References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1903
Release Date:
=============
2016-08-12
Vulnerability Laboratory ID (VL-ID):
====================================
1903
Common Vulnerability Scoring System:
====================================
6.2
Product & Service Introduction:
===============================…
Posted by Vulnerability Lab on Aug 15
Document Title:
===============
Stash v1.0.3 CMS – SQL Injection Vulnerability
References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1899
Release Date:
=============
2016-08-10
Vulnerability Laboratory ID (VL-ID):
====================================
1899
Common Vulnerability Scoring System:
====================================
6
Product & Service Introduction:
===============================
Stash…
Posted by Francesco Oddo on Aug 12
( , ) (,
. ‘.’ ) (‘. ‘,
). , (‘. ( ) (
(_,) .’), ) _ _,
/ _____/ / _ ____ ____ _____
____ ==/ /_ _/ ___/ _ /
/ / | \ __( <_> ) Y Y
/______ /___|__ / ___ >____/|__|_| /
/ /.-. / /:wq
(x.0)
‘=.|w|.=’
_=”””=….
Posted by Francesco Oddo on Aug 12
( , ) (,
. ‘.’ ) (‘. ‘,
). , (‘. ( ) (
(_,) .’), ) _ _,
/ _____/ / _ ____ ____ _____
____ ==/ /_ _/ ___/ _ /
/ / | \ __( <_> ) Y Y
/______ /___|__ / ___ >____/|__|_| /
/ /.-. / /:wq
(x.0)
‘=.|w|.=’
_=”””=….
Posted by Francesco Oddo on Aug 12
( , ) (,
. ‘.’ ) (‘. ‘,
). , (‘. ( ) (
(_,) .’), ) _ _,
/ _____/ / _ ____ ____ _____
____ ==/ /_ _/ ___/ _ /
/ / | \ __( <_> ) Y Y
/______ /___|__ / ___ >____/|__|_| /
/ /.-. / /:wq
(x.0)
‘=.|w|.=’
_=”””=….
Posted by Hanz Jenson on Aug 12
While auditing the Teamspeak 3 server I’ve discovered several 0-day
vulnerabilities which I’ll describe in detail in this advisory. They exist in
the newest version of the server, version 3.0.13.
I found 10 vulnerabilities. Some of these are critical and allow remote code
execution. For the average user, that means that these vulnerabilities can be
exploited by a malicious attacker in order to take over any Teamspeak server,
not only…
Posted by 1n3 on Aug 12
=========================================
Title: Zabbix 3.0.3 SQL Injection Vulnerability
Product: Zabbix
Vulnerable Version(s): 2.2.x, 3.0.x
Fixed Version: 3.0.4
Homepage: http://www.zabbix.com
Patch link: https://support.zabbix.com/browse/ZBX-11023
Credit: 1N3@CrowdShield
==========================================
Vendor Description:
=====================
Zabbix is an open source availability and performance monitoring solution….