[FD] Fireware XTM Web UI - Open Redirect

ine 15/12/2015 - Informed Vendor about the issue 16/12/2015 - Vendor answer and confirm the issue (BUG89149) 24/03/2016 - Vendor fixed in the latest release. 29/03/2016 - Public disclosure. Credits & Authors ---- Manuel Mancera (@sinkmanu) www.a2secure.com Dis

[FD] Celoxis <= 9.5 - Cross Site Scripting (XSS)

ix released (vendor informed us) 23/11/2015 - Vulnerability published Credits & Authors ---- Manuel Mancera (@sinkmanu) www.a2secure.com Disclaimer --- All information is provided without warranty. The intent is to provide information to secure infras

[FD] Authentication Bypass in Pandora FMS

the vulnerability 10/06/2015 - Vulnerability published Solution Apply the latest patches available at the vendor website. Credits Authors Manuel Mancera (sinkmanu) mmanc...@a2secure.com mailto:mmanc...@a2secure.com Artëm Tsvetkovatsvet