Path traversal vulnerability in EMC MR (Watch4net) Device Discovery

Path traversal vulnerability in EMC MR (Watch4net) Device Discovery Han Sahin, November 2014

Cross-Site Scripting vulnerability in EMC MR (Watch4net) Web Portal Report Favorites

Cross-Site Scripting vulnerability in EMC MR (Watch4net) Web Portal Report Favorites Han Sahin, November 2014

Command injection vulnerability in EMC Secure Remote Services Virtual Edition

Command injection vulnerability in EMC Secure Remote Services Virtual Edition Han Sahin, November 2014

EMC MR (Watch4net) data storage collector credentials are not properly protected

EMC MR (Watch4net) data storage collector credentials are not properly protected Han Sahin, November 2014

Cross-Site Scripting vulnerability in EMC MR (Watch4net) Centralized Management Console

Cross-Site Scripting vulnerability in EMC MR (Watch4net) Centralized Management Console Han Sahin, November 2014

Path traversal vulnerability in EMC MR (Watch4net) MIB Browser

Path traversal vulnerability in EMC MR (Watch4net) MIB Browser Han Sahin, November 2014

EMC Secure Remote Services Virtual Edition Provisioning component is affected by SQL injection

EMC Secure Remote Services Virtual Edition Provisioning component is affected by SQL injection Han Sahin, November 2014

Cross-Site Scripting vulnerability in EMC MR (Watch4net) Alerting Frontend

Cross-Site Scripting vulnerability in EMC MR (Watch4net) Alerting Frontend Han Sahin, November 2014

Google Analytics by Yoast stored XSS

OVERVIEW == Google Analytics by Yoast is a WordPress plug-in for monitoring website traffic. With approximately seven million downloads it’s one of the most popular WordPress plug-ins. A security vulnerability in the plug-in allows an unauthenticated attacker to store arbitrary HTML,

FreeBSD Security Advisory FreeBSD-SA-15:06.openssl

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 = FreeBSD-SA-15:06.opensslSecurity Advisory The FreeBSD Project Topic:

cve-assign delays

We recognize that some requesters have experienced delays, and sometimes lengthy delays, in getting CVE IDs assigned. We apologize for those delays. The number of cve-assign requests has been growing dramatically, as has the number of unique and new requesters. Our goal is always to provide

Advent JMX Servlet of Citrx Command Center is accessible to unauthenticated users

Advent JMX Servlet of Citrx Command Center is accessible to unauthenticated users Han Sahin, August 2014

Citrix NetScaler VPX help pages are vulnerable to Cross-Site Scripting

Citrix NetScaler VPX help pages are vulnerable to Cross-Site Scripting Han Sahin, August 2014

[SECURITY] [DSA 3197-1] openssl security update

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 - - Debian Security Advisory DSA-3197-1 secur...@debian.org http://www.debian.org/security/Moritz Muehlenhoff March 19, 2015

Citrix NITRO SDK xen_hotfix page is vulnerable to Cross-Site Scripting

Citrix NITRO SDK xen_hotfix page is vulnerable to Cross-Site Scripting Han Sahin, August 2014

Command injection vulnerability in Citrix NITRO SDK xen_hotfix page

Command injection vulnerability in Citrix NITRO SDK xen_hotfix page Han Sahin, August 2014