date:20161108

[FD] Stored Cross-Site Scripting vulnerability in 404 to 301 WordPress Plugin

2016-11-08 Thread Summer of Pwnage

Stored Cross-Site Scripting vulnerability in 404 to 301 WordPress Plugin Alyssa Milburn , July 2016 ---

[FD] Cross-Site Scripting in Calendar WordPress Plugin

2016-11-08 Thread Summer of Pwnage

Cross-Site Scripting in Calendar WordPress Plugin Remco Vermeulen, July 2016 A

[FD] Persistent Cross-Site Scripting in WassUp Real Time Analytics WordPress Plugin

2016-11-08 Thread Summer of Pwnage

Persistent Cross-Site Scripting in WassUp Real Time Analytics WordPress Plugin Burak Kelebek, October 2016

[FD] Cross-Site Scripting vulnerability in Caldera Forms WordPress Plugin

2016-11-08 Thread Summer of Pwnage

Cross-Site Scripting vulnerability in Caldera Forms WordPress Plugin Jurgen Kloosterman, July 2016

[FD] Cross-Site Scripting vulnerability in Quotes Collection WordPress Plugin

2016-11-08 Thread Summer of Pwnage

Cross-Site Scripting vulnerability in Quotes Collection WordPress Plugin Yorick Koster, July 2016 -

[FD] YITH WooCommerce Compare WordPress Plugin unauthenticated PHP Object injection vulnerability

2016-11-08 Thread Summer of Pwnage

YITH WooCommerce Compare WordPress Plugin unauthenticated PHP Object injection vulnerability Yorick Koster, June 2016 -

[FD] Cross Site Scripting Vulnerability In Verint Impact 360

2016-11-08 Thread Sanehdeep Singh

Overview * Title : Cross Site Scripting Vulnerability In Verint Impact 360 * Author: Sanehdeep Singh * Plugin Homepage: http://www.verint.com * Severity: Medium * Version Affected: 11.1 * Version patched: Patches available. Contact Vendor Description === About the Product ==

[FD] Crashing Android devices with large Proxy Auto Config (PAC) Files [CVE-2016-6723]

2016-11-08 Thread Nightwatch Cybersecurity Research

[Original at: https://wwws.nightwatchcybersecurity.com/2016/11/07/crashing-android-devices-with-large-pac-files-cve-2016-6723/] Summary Android devices can be crashed forcing a halt and then a soft reboot by downloading a large proxy auto config (PAC) file when adjusting the Android networking s

[FD] [CVE-2016-6563 / VU#677427]: Dlink DIR routers HNAP Login stack buffer overflow

2016-11-08 Thread Pedro Ribeiro

tl;dr A stack bof in several Dlink routers, which can be exploited by an unauthenticated attacker in the LAN. There is no patch as Dlink did not respond to CERT's requests. As usual, a Metasploit module is in the queue (see [9] below) and should hopefully be integrated soon. The interesting thing

[FD] Stored Cross-Site Scripting vulnerability in 404 to 301 WordPress Plugin

[FD] Cross-Site Scripting in Calendar WordPress Plugin

[FD] Persistent Cross-Site Scripting in WassUp Real Time Analytics WordPress Plugin

[FD] Cross-Site Scripting vulnerability in Caldera Forms WordPress Plugin

[FD] Cross-Site Scripting vulnerability in Quotes Collection WordPress Plugin

[FD] YITH WooCommerce Compare WordPress Plugin unauthenticated PHP Object injection vulnerability

[FD] Cross Site Scripting Vulnerability In Verint Impact 360

[FD] Crashing Android devices with large Proxy Auto Config (PAC) Files [CVE-2016-6723]

[FD] [CVE-2016-6563 / VU#677427]: Dlink DIR routers HNAP Login stack buffer overflow

9 matches

Site Navigation

Mail list logo

Footer information