Voting vendor ES&S unveils vulnerability disclosure program
August 6th, 2020 📆 | 8094 Views ⚑
Election system vendors have had frosty relationships with the infosec community in the past, but one company is reversing course
Browsing the "disclosure" Tag
Tagged with: disclosure • ESS • program • unveils • vendor • voting • vulnerability
WordPress Email Subscribers And Newsletters 4.2.2 File Disclosure ≈ Packet Storm
July 30th, 2020 📆 | 5066 Views ⚑
WordPress Email Subscribers And Newsletters 4.2.2 File Disclosure Posted Jul 27, 2020 Authored by KBA at Sogeti Esec WordPress Email
Tagged with: advisory • CSRF • disclosure • email • exploit • File • newsletters • overflow • packet • scanner • security • storm • subscribers • vulnerability • whitepaper • wordpress • XSS
Cisco ASA / FTD Remote File Disclosure
July 29th, 2020 📆 | 2387 Views ⚑
This Python script checks whether the target server is vulnerable to CVE-2020-3452, a vulnerability in Cisco Adaptive Security Appliance (ASA)
Tagged with: advisory • ASA • cisco • CSRF • disclosure • exploit • File • FTD • overflow • remote • scanner • security • vulnerability • whitepaper • XSS
Webtareas 2.1 / 2.1p File Upload / Information Disclosure ≈ Packet Storm
July 9th, 2020 📆 | 4016 Views ⚑
#Authenticated File Upload vulnerability#Author: AppleBois#Homepage: https://sourceforge.net/projects/webtareas/#Affected Version: 2.1 && 2.1p#Vendors Claim there’s a patch on 2.1p but it’s vulnerable and
Tagged with: 21p • advisory • CSRF • disclosure • exploit • File • information • overflow • packet • scanner • security • storm • upload • vulnerability • webtareas • whitepaper • XSS
CDATA OLTs Backdoor / Privilege Escalation / Information Disclosure ≈ Packet Storm
July 8th, 2020 📆 | 7457 Views ⚑
Hello, Please find a text-only version below sent to security mailing lists. The complete version on “Multiple vulnerabilities found in
Tagged with: advisory • backdoor • cdata • CSRF • disclosure • escalation • exploit • information • OLTs • overflow • packet • privilege • scanner • security • storm • vulnerability • whitepaper • XSS
Cybersecurity & the Role of National Vulnerability Disclosure Policies
June 28th, 2020 📆 | 7637 Views ⚑
Presented by Pam Dheri at the 2019 SERENE-RISC Workshop SERENE-RISC annual workshop is an indispensable event for cybersecurity professionals hosted
Tagged with: amp • computer vulnerability • cybersecurity • disclosure • national • policies • role • vulnerability
Anatomy of a Responsible Disclosure — Zero Day Vulnerability in Oracle BI Publisher – ClubHack 2012
June 27th, 2020 📆 | 2597 Views ⚑
ClubHack 2012 Hacking & Security Conference Speaker: Vishal Kalro Talk: Anatomy of a Responsible Disclosure — Zero Day Vulnerability in
Tagged with: anatomy • clubhack • Day • disclosure • oracle • publisher • responsible • vulnerability • zero-day vulnerability
Avaya IP Office 11 – Password Disclosure
June 13th, 2020 📆 | 8593 Views ⚑
# Exploit Title: Avaya IP Office 11 - Password Disclosure # Exploit Author: hyp3rlinx # Date: 2020-06-09 # Vender Homepage:
Tagged with: avaya • CVE-2020-7030 • disclosure • multiple • office • password • webapps
Castel NextGen DVR 1.0.0 Bypass / CSRF / Disclosure ≈ Packet Storm
June 5th, 2020 📆 | 7345 Views ⚑
All issues are associated with *Castel NextGen DVR v1.0.0 *and have beenresolved in v1.0.1*.* ——————————-*CVE-2020-11679* *Original Disclosure*https://www.securitymetrics.com/blog/attackers-known-unknown-authorization-bypass *Description*A low privileged
Tagged with: advisory • bypass • castel • CSRF • disclosure • DVR • exploit • nextgen • overflow • packet • scanner • security • storm • vulnerability • whitepaper • XSS
Avaya IP Office 11 Insecure Transit / Password Disclosure ≈ Packet Storm
June 5th, 2020 📆 | 7575 Views ⚑
+] Credits: John Page (aka hyp3rlinx) +] Website: hyp3rlinx.altervista.org+] Source: http://hyp3rlinx.altervista.org/advisories/AVAYA-IP-OFFICE-INSECURE-TRANSIT-PASSWORD-DISCLOSURE.txt+] twitter.com/hyp3rlinx+] ISR: ApparitionSec Vendor]www.avaya.com Product]Avaya IP Office v9.1.8.0 –
Tagged with: advisory • avaya • CSRF • disclosure • exploit • insecure • office • overflow • packet • password • scanner • security • storm • transit • vulnerability • whitepaper • XSS
BRIEF-Chunghsin Technology Group Probed For Suspected Violation Of Information Disclosure
June 4th, 2020 📆 | 8114 Views ⚑
June 4 (Reuters) – Chunghsin Technology Group Co Ltd : * SAYS IT IS PROBED BY SECURITIES REGULATOR FOR SUSPECTED
Tagged with: Asia / Pacific • brief • BRIEFChunghsin • China (PRC) • chunghsin • Chunghsin Technology Group Probed For Suspected Violation • Company News • Computer Hardware (TRBC) • Corporate Events • disclosure • Emerging Market Countries • group • Hong Kong • information • probed • Regulation • suspected • technology • Technology (TRBC) • Technology / Media / Telecoms • Technology Equipment (TRBC) • violation
Proposals for CISA’s Vulnerability Disclosure Platform Coming this Summer – MeriTalk
May 29th, 2020 📆 | 4130 Views ⚑
The Cybersecurity and Infrastructure Security Agency (CISA) is leading the call for a governmentwide vulnerability disclosure platform, with a request
Tagged with: CISAs • coming • disclosure • meritalk • platform • proposals • summer • vulnerability
Joomla XCloner Backup 3.5.3 Local File Disclosure ≈ Packet Storm
May 27th, 2020 📆 | 6887 Views ⚑
#Exploit Title: Joomla XCloner Backup – Authenticated Local File Disclosure#Date: 10.05.2020#Exploit Author: Mehmet Kelepçe / Gais Cyber Security#Exploit-Db Author ID:
Tagged with: advisory • backup • CSRF • disclosure • exploit • File • joomla • local • overflow • packet • scanner • security • storm • vulnerability • whitepaper • xcloner • XSS
BRIEF-Shenzhen Selen Science & Technology Fined And Warned For Information Disclosure Violations
May 24th, 2020 📆 | 2776 Views ⚑
May 24 (Reuters) – Shenzhen Selen Science & Technology Co Ltd: * SAYS IT IS FINED AND WARNED BY SECURITIES
Tagged with: Asia / Pacific • brief • BRIEFShenzhen • Business Support Supplies (TRBC) • China (PRC) • Commercial Services and Supplies (TRBC) • Company News • Corporate Events • disclosure • Emerging Market Countries • fined • Hong Kong • Industrial Services (TRBC) • Industrials (TRBC) • information • Regulation • science • selen • shenzhen • Shenzhen Selen Science and Technology Fined And Warned For I • technology • violations • warned
Reinventing Vulnerability Disclosure using Zero-knowledge Proofs
May 21st, 2020 📆 | 5075 Views ⚑
We, along with our partner Matthew Green at Johns Hopkins University, are using zero-knowledge (ZK) proofs to establish a trusted
Tagged with: disclosure • knowledge • proofs • reinventing • using • vulnerability • ZeroKnowledge
FIRST updates guidelines for multi-party vulnerability disclosure
May 18th, 2020 📆 | 3809 Views ⚑
Best practice playbook expanded to include clear comms, safe harbor clauses, and disclosure embargoes The Forum of Incident Response and
Tagged with: disclosure • first • guidelines • multi • multiparty • party • updates • vulnerability
Confluence Server and Confluence Data Center Local File Disclosure(CVE-2019-3394)
May 18th, 2020 📆 | 4656 Views ⚑
Confluence Server and Confluence Data Center Local File Disclosure(CVE-2019-3394) with Pocsuite3 by Knownsec 404 Team. source
Tagged with: center • confluence • data • disclosure • DisclosureCVE20193394 • File • local • server • vuldb
Cisco RV320&RV325 Router Information Disclosure and RCE(CVE-2019-1653)Patch Bypass with Pocsuite3
May 17th, 2020 📆 | 6586 Views ⚑
Cisco RV320 and RV325 Router Information Disclosure and RCE(CVE-2019-1653) Patch Bypass with Pocsuite3 by Knownsec 404 Team source
Tagged with: bypass • cisco • disclosure • information • patch • pocsuite3 • RCECVE20191653Patch • router • rv320 • RV320ampRV325 • rv325 • vuldb
webERP 4.15.1 Backup Disclosure ↭
May 6th, 2020 📆 | 4655 Views ⚑
# Exploit Title: webERP 4.15.1 – Unauthenticated Backup File Access# Date: 2020-05-01# Author: Besim ALTINOK# Vendor Homepage: http://www.weberp.org# Software Link:
Tagged with: advisory • backup • CSRF • disclosure • exploit • overflow • scanner • security • vulnerability • weberp • whitepaper • XSS
Edimax EW-7438RPn – Information Disclosure (WiFi Password)
April 30th, 2020 📆 | 6338 Views ⚑
# Exploit Title: Edimax EW-7438RPn 1.13 - Information Disclosure (WiFi Password) # Date: 2020-04-21 # Exploit Author: Besim ALTINOK #
Tagged with: 7438rpn • disclosure • edimax • EW7438RPn • hardware • information • password • webapps • Wifi
File Explorer 1.4 Information Disclosure ↭
April 28th, 2020 📆 | 3445 Views ⚑
Document Title:===============File Explorer v1.4 iOS – Information Disclosure Vulnerability References (Source):====================https://www.vulnerability-lab.com/get_content.php?id=2220 Release Date:=============2020-04-28 Vulnerability Laboratory ID (VL-ID):====================================2220 Common Vulnerability Scoring
Tagged with: advisory • CSRF • disclosure • exploit • explorer • File • information • overflow • scanner • security • vulnerability • whitepaper • XSS
Edimax EW-7438RPn Information Disclosure ↭
April 22nd, 2020 📆 | 8444 Views ⚑
# Exploit Title: Edimax EW-7438RPn 1.13 – Information Disclosure (WiFi Password)# Date: 2020-04-21# Exploit Author: Besim ALTINOK# Vendor Homepage: https://www.edimax.com/edimax/merchandise/merchandise_detail/data/edimax/global/wi-fi_range_extenders_n300/ew-7438rpn_mini/#
Tagged with: 7438rpn • advisory • CSRF • disclosure • edimax • EW7438RPn • exploit • information • overflow • scanner • security • vulnerability • whitepaper • XSS
Swift File Transfer Mobile Cross Site Scripting / Information Disclosure ↭
April 18th, 2020 📆 | 8405 Views ⚑
Document Title:===============Swift File Transfer Mobile – Multiple Web Vulnerabilities References (Source):====================https://www.vulnerability-lab.com/get_content.php?id=2205 Release Date:=============2020-04-17 Vulnerability Laboratory ID (VL-ID):====================================2205 Common Vulnerability Scoring
Tagged with: advisory • cross • CSRF • disclosure • exploit • File • information • mobile • overflow • scanner • scripting • security • Site • swift • transfer • vulnerability • whitepaper • XSS
SMACom 1.2.0 Insecure Transit / Password Disclosure ↭
April 17th, 2020 📆 | 6512 Views ⚑
Document Title:===============SMACom v1.2.0 – Insecure Session Validation Vulnerability References (Source):====================https://www.vulnerability-lab.com/get_content.php?id=2211 Release Date:=============2020-04-16 Vulnerability Laboratory ID (VL-ID):====================================2211 Common Vulnerability Scoring System:====================================7.1
Tagged with: advisory • CSRF • disclosure • exploit • insecure • overflow • password • scanner • security • smacom • transit • vulnerability • whitepaper • XSS
Popular
Red Hat Security Advisory 2020-3101-01 ≈ Packet Storm July 23, 2020 -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA256==================================================================== Red Hat Security AdvisorySynopsis: Important:…
The IT Investments Federal Technology Leaders See on… July 16, 2020 Training and Data Analytics Are Seen as Key to Cybersecurity…- Sifter 8.5_2 July 23, 2020 Sifter 8.5_2 Posted Jul 23, 2020 Authored by s1l3nt78 |…
- Red Hat Security Advisory 2020-3005-01 ≈ Packet Storm July 20, 2020 -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA256==================================================================== Red Hat Security AdvisorySynopsis: Important:…
Dr. Sills: How NFL is using innovative technology to … July 28, 2020 NFL Chief Medical Officer Dr. Allen Sills joins "Good Morning…
Garmin suffers massive technology outage in a… July 25, 2020 Garmin International continues to struggle with a major technological outage…
Hackers stole GitHub and GitLab OAuth tokens from… July 27, 2020 Image: Yancy Min Waydev, an analytics platform used by software…
Members
Comments