Category Archives: Full Disclosure

Full Disclosure

Full Disclosure

ZMS v3.2 CMS – Multiple Client Side Cross Site Scripting Web Vulnerabilities

Posted by Vulnerability Lab on Jul 29

Document Title:
===============
ZMS v3.2 CMS – Multiple Client Side Cross Site Scripting Web Vulnerabilities

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1890

Release Date:
=============
2016-07-28

Vulnerability Laboratory ID (VL-ID):
====================================
1890

Common Vulnerability Scoring System:
====================================
3.3

Product & Service Introduction:…

Full Disclosure

Saveya Bounty #1 – Bypass & Persistent Vulnerability

Posted by Vulnerability Lab on Jul 28

Document Title:
===============
Saveya Bounty #1 – Bypass & Persistent Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1857

SaveYa ID: 56

Acknowledgements: https://www.saveya.com/white-hat-program-acknowledgements

Release Date:
=============
2016-07-26

Vulnerability Laboratory ID (VL-ID):
====================================
1857

Common Vulnerability Scoring System:…

Full Disclosure

Zoll Checklist v1.2.2 iOS – Multiple Persistent Vulnerabilities

Posted by Vulnerability Lab on Jul 28

Document Title:
===============
Zoll Checklist v1.2.2 iOS – Multiple Persistent Vulnerabilities

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1881

Release Date:
=============
2016-07-27

Vulnerability Laboratory ID (VL-ID):
====================================
1881

Common Vulnerability Scoring System:
====================================
3.6

Product & Service Introduction:…

Full Disclosure

Exponent CMS 2.3.9 – Useraccounts Persistent Vulnerability

Posted by Vulnerability Lab on Jul 28

Document Title:
===============
Exponent CMS 2.3.9 – Useraccounts Persistent Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1886

Release Date:
=============
2016-07-27

Vulnerability Laboratory ID (VL-ID):
====================================
1886

Common Vulnerability Scoring System:
====================================
4.5

Product & Service Introduction:…

Full Disclosure

Zortam Media Studio 20.60 – Buffer Overflow Vulnerability

Posted by Vulnerability Lab on Jul 28

Document Title:
===============
Zortam Media Studio 20.60 – Buffer Overflow Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1884

Release Date:
=============
2016-07-27

Vulnerability Laboratory ID (VL-ID):
====================================
1884

Common Vulnerability Scoring System:
====================================
6.5

Product & Service Introduction:…

Full Disclosure

VUPlayer 2.49 – (.wax) Buffer Overflow Vulnerability

Posted by Vulnerability Lab on Jul 27

Document Title:
===============
VUPlayer 2.49 – (.wax) Buffer Overflow Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1877

Release Date:
=============
2016-07-26

Vulnerability Laboratory ID (VL-ID):
====================================
1877

Common Vulnerability Scoring System:
====================================
6.4

Product & Service Introduction:…

Full Disclosure

VUPlayer 2.49 – (.pls) Buffer Overflow Vulnerability

Posted by Vulnerability Lab on Jul 27

Document Title:
===============
VUPlayer 2.49 – (.pls) Buffer Overflow Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1876

Release Date:
=============
2016-07-25

Vulnerability Laboratory ID (VL-ID):
====================================
1876

Common Vulnerability Scoring System:
====================================
6.4

Product & Service Introduction:…

Full Disclosure

DornCMS v1.4 – (FileManager) Persistent Cross Site Scripting Vulnerability

Posted by Vulnerability Lab on Jul 27

Document Title:
===============
DornCMS v1.4 – (FileManager) Persistent Cross Site Scripting Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1885

Release Date:
=============
2016-07-26

Vulnerability Laboratory ID (VL-ID):
====================================
1885

Common Vulnerability Scoring System:
====================================
4.3

Product & Service Introduction:…

Full Disclosure

Nusiorung CMS 2016 – (Login) Auth Bypass Vulnerability

Posted by Vulnerability Lab on Jul 27

Document Title:
===============
Nusiorung CMS 2016 – (Login) Auth Bypass Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1875

Release Date:
=============
2016-07-13

Vulnerability Laboratory ID (VL-ID):
====================================
1875

Common Vulnerability Scoring System:
====================================
7.6

Abstract Advisory Information:
==============================…

Full Disclosure

Cross-Site Scripting vulnerability in ColorWay WordPress Theme

Posted by Summer of Pwnage on Jul 26

————————————————————————
Cross-Site Scripting vulnerability in ColorWay WordPress Theme
————————————————————————
Yorick Koster, July 2016

————————————————————————
Abstract
————————————————————————
Multiple Cross-Site Scripting vulnerabilities were found in…