Full report: https://blogs.securiteam.com/index.php/archives/3669
Twitter: @SecuriTeam_SSD
Weibo: SecuriTeam_SSD
The following advisory describes one (1) vulnerability found in CloudMe.
CloudMe is “a file storage service operated by CloudMe AB that offers cloud
storage, file synchronization and c
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
DSA-2018-024: Dell EMC VMAX Virtual Appliance (vApp) Manager Multiple
Vulnerabilities
Dell EMC Identifier: DSA-2018-024
CVE Identifier: CVE-2018-1215, CVE-2018-1216
Severity Rating: CVSS Base Score: See below for each CVE.
Affected products:
De
On the occasion of the ninth edition of RootedCON, the most important
computer security conference in the country, around 2,000 hackers will
meet to discuss new questions and researchs about the cybersecurity
world, with its risks and threats. National and international experts
have included in th
Hey, it's actually CVE-2017-16670. Could this be updated? Sorry about that.
-Ismail
On Tue, Feb 6, 2018 at 2:43 PM, Ismail Doe wrote:
> Document Title:
> ===
> SoapUI Arbitrary Code Execution via Malicious Project
>
> Product Description:
> ===
> SoapUI is the world's mo
Title: Multiple SQL injection vulnerabilities in dotCMS (2x CVE)
Credit: Elar Lang / https://security.elarlang.eu
Vendor/Product: dotCMS (http://dotcms.com/)
Vulnerability: SQL injection
Vulnerable version: before 4.1.1. Theoretically would be fixed in
3.7.2 (not released yet)
CVE: CVE-2016-10007,
[+] Credits: John Page (aka hyp3rlinx)
[+] Website: hyp3rlinx.altervista.org
[+] Source:
http://hyp3rlinx.altervista.org/advisories/CLOUDME-SYNC-UNAUTHENTICATED-REMOTE-BUFFER-OVERFLOW.txt
[+] ISR: Apparition Security
[+] SSD Beyond Security Submission:
https://blogs.securiteam.com/index