atory [Research Team] - Benjamin Kunz Mejri
(b...@evolution-sec.com) [www.vulnerability-lab.com]
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, eith
amp; Authors:
==
ZwX - [http://www.vulnerability-lab.com/show.php?user=ZwX]
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed or
w.php?user=ZwX]
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed or
implied,
including the warranties of merchantability and capability for a particula
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed or
implied,
including the warranties of merchantability and capability for a particular
purpose. Vulnerability-Lab or its s
tory [Research Team] - Benjamin Kunz Mejri
(b...@evolution-sec.com) [www.vulnerability-lab.com]
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, eithe
==
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed or
implied,
including the warranties of merchantability and capability for a particular
purpose. Vulnerability-Lab or its suppliers are not liable
SEC Consult Vulnerability Lab Security Advisory < 20160725-0 >
===
title: Multiple vulnerabilities
product: Micro Focus (former Novell) Filr Appliance
vulnerable version: Filr 2 <=2.0.0.421,
oratory [Research Team] - Benjamin Kunz Mejri
(b...@evolution-sec.com) [www.vulnerability-lab.com]
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either
Credits & Authors:
==
Vulnerability Laboratory [Research Team] - Benjamin Kunz Mejri
(resea...@vulnerability-lab.com) [www.vulnerability-lab.com]
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
his advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed
or implied, including the warranties of merchantability and capability for a
particular purpose. Vulnerability-Lab or its suppliers are not liable
in any case of damage, in
Title: Zero-day flaw lets hackers tamper with your car through BMW portal
URL:
http://www.zdnet.com/article/hackers-can-tamper-with-car-registration-through-bmw-connected-car-portal/
--
VULNERABILITY LABORATORY - RESEARCH TEAM
SERVICE: www.vulnerability-lab.com
CONTACT:
sclaimer & Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed or
implied,
including the warranties of merchantability and capability for a particular
purpose. Vulnerab
om/show.php?user=ZwX ]
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed or
implied,
including the warranties of merchantability and capability f
.Net]
[http://www.vulnerability-lab.com/show.php?user=Iran%20Cyber%20Security]
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed or
implied,
includin
ulnerability-lab.com) [www.vulnerability-lab.com]
[http://www.vulnerability-lab.com/show.php?user=Benjamin%20K.M.]
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warr
SEC Consult Vulnerability Lab Security Advisory < 20160624-0 >
===
title: XSS and information disclosure vulnerability
product: ASUS DSL-N55U router
vulnerable version: 3.0.0.4.376_2736
& Authors:
==
Aaditya Purani - (https://aadityapurani.com)
[http://www.vulnerability-lab.com/show.php?user=Aaditya%20Purani]
Disclaimer & Information:
=========
The information provided in this advisory is provided as it is without any
warranty. Vulnerab
Mejri
(b...@evolution-sec.com) [www.vulnerability-lab.com]
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed or
implied,
including the warranties of
SEC Consult Vulnerability Lab Security Advisory < 20160602-0 >
===
title: Multiple critical vulnerabilities
product: Ubee EVW3226 Advanced wireless voice gateway
vulnerable version: Fi
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed or
implied,
including the warranties of merchantability and capability for a particular
purpose. Vulnerability-Lab or its
[http://www.vulnerability-lab.com/show.php?user=Benjamin%20K.M.]
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed or
implied,
including the warranties
l name field to a script code payload
Note: Vulnerability Lab">http://www.vulnerability-lab.com/;
onload=alert(document.cookie)<> or
3. The execute occurs in the main label field output context value
4. Successful reproduce of the application-side vulnerability!
--- PoC Session L
amp; Information:
=====
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed or
implied,
including the warranties of merchantability and capability for a particular
purpose. Vuln
K.M.]
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed or
implied,
including the warranties of merchantability and capability for a particular
purpose. Vulnerability-Lab or its
do match with the case scenario.
Credits & Authors:
==
Karim Rahal [ka...@karimrahal.com / karim...@elitesec.org] - @KarimMTV
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerabilit
%20Security]
Special Thanks: root3r
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed or
implied,
including the warranties of merchantability
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed or
implied,
including the warranties of merchantability and capability for a particular
purpose. Vulnerability-Lab or its suppliers are not liabl
w.php?user=Lawrence%20Amer )
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed
or implied, including the warranties of merchantabi
mation:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed or
implied,
including the warranties of merchantability and capability for a particular
purpose. Vulnerability-Lab or its s
is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed or
implied,
including the warranties of merchantability and capability for a particular
purpose. Vulnerability-Lab or its suppliers are not liable in any case of
damage,
including direct, indirec
llow usage of special
chars and escapte the entries to prevent further application-side script code
injection attacks.
Security Risk:
==
The security risk of the application-side input validation vulnerability and
filter bypass issue is estimated as medium. (CVSS 3.6)
Credit
- (
http://www.vulnerability-lab.com/show.php?user=Lawrence%20Amer )
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed
or implied, in
this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed or
implied,
including the warranties of merchantability and capability for a particular
purpose. Vulnerability-Lab or its suppliers are not liable in any case of
damage,
includ
n appliance
web-application.
Credits & Authors:
==
Vulnerability Laboratory [Research Team] - Benjamin Kunz Mejri
(resea...@vulnerability-lab.com) [www.vulnerability-lab.com]
Disclaimer & Information:
=====
The information provided in this advisory is
SEC Consult Vulnerability Lab Security Advisory < 20160422-0 >
===
title: Insecure data storage
product: my devolo - android application - air.de.devolo.my.devolo
vulnerable version: 1.2.8
sk of the application-side input validation web
vulnerability in the django cms is estimated as medium. (CVSS 3.6)
Credits & Authors:
==
Vulnerability Laboratory [Research Team] - Benjamin Kunz Mejri
(b...@evolution-sec.com) [www.vulnerability-lab.com]
Disclaimer & Information:
=
, nazanin_wild and 0xdevil
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without
any warranty. Vulnerability Lab disclaims all warranties, either
expressed or implied,
including the warranties of merchantability and capability for a
par
ded in this advisory is provided as it is without
any warranty. Vulnerability Lab disclaims all warranties, either
expressed or implied,
including the warranties of merchantability and capability for a
particular purpose. Vulnerability-Lab or its suppliers are not liable in
any case of damage,
includ
lack , whitewolf ,
mr.s4jj4d , mr.turk , 0day , pi.hack , l3gi0n , nazanin_wild and 0xdevil
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without
any warranty. Vulnerability Lab disclaims all warranties, either
expressed o
ck , l3gi0n , nazanin_wild and 0xdevil
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without
any warranty. Vulnerability Lab disclaims all warranties, either
expressed or implied,
including the warranties of merchantability and capab
The information provided in this advisory is provided as it is without
any warranty. Vulnerability Lab disclaims all warranties, either
expressed or implied,
including the warranties of merchantability and capability for a
particular purpose. Vulnerability-Lab or its suppliers are not liable
ck , l3gi0n , nazanin_wild and 0xdevil
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without
any warranty. Vulnerability Lab disclaims all warranties, either
expressed or implied,
including the warranties of merchantability a
3gi0n, mr.turk , 0xdevil ,
king_k4li
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without
any warranty. Vulnerability Lab disclaims all warranties, either
expressed or implied,
including the warranties of merchantability and capabil
=
The information provided in this advisory is provided as it is without
any warranty. Vulnerability Lab disclaims all warranties, either
expressed or implied,
including the warranties of merchantability and capability for a
particular purpose. Vulnerability-Lab or its supplie
T3qwAAbpfxk8XLzrgFKnerkc.NAAUqd6uR22UgXJ6WAA--]
Content-Length[382]
X-Firefox-Spdy[h2]
Security Risk:
==
The security risk of the session web and redirect vulnerability in the
trend micro sso online service web-application is estimated as high.
(C
ities in the
web-application are estimated as high. (CVSS 7.5)
Credits & Authors:
==
Dr.Malware
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without
any warranty. Vulnerability Lab disclaims all war
er=Manideep%20K.]
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without
any warranty. Vulnerability Lab disclaims all warranties, either
expressed or implied,
including the warranties of merchantability and capability for a
par
The information provided in this advisory is provided as it is without
any warranty. Vulnerability Lab disclaims all warranties, either
expressed or implied,
including the warranties of merchantability and capability for a
particular purpose. Vulnerability-Lab or its suppliers ar
i
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without
any warranty. Vulnerability Lab disclaims all warranties, either
expressed or implied,
including the warranties of merchantability and capability for a
particular purpose. Vulnerability-Lab
it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed or
implied,
including the warranties of merchantability and capability for a particular
purpose. Vulnerability-Lab or its suppliers are not liable in any case of
damage,
including direct, indirect, in
ecurity risk of the application-side validation web vulnerability in the
profile module is estimated as medium. (CVSS 3.4)
Credits & Authors:
==
Vulnerability Laboratory [Research Team] - Lawrence Amer -
http://www.vulnerability-lab.com/show.php?user=Lawrence%20Amer
Discl
===
Vulnerability Laboratory [Research Team] - Benjamin Kunz Mejri
(resea...@vulnerability-lab.com)
[http://www.vulnerability-lab.com/show.php?user=Benjamin%20K.M.]
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability La
==
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed or
implied,
including the warranties of merchantability and capability for a particular
purpose. Vulnerability-Lab or its
Team] - Benjamin Kunz Mejri
(b...@evolution-sec.com) [www.vulnerability-lab.com]
Disclaimer & Information:
=====
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed
ttp://www.vulnerability-lab.com/show.php?user=Lawrence%20Amer
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed or
implied,
including the warranties
rability-lab.com/show.php?user=Milan%20A%20Solanki]
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either
expressed or implied, including the warrantie
this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed
or implied, including the warranties of merchantability and capability for a
particular purpose. Vulnerability-Lab or its suppliers are not liable
in any case of damage, inc
er & Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed
or implied, including the warranties of merchantability and capability for a
particular purpose. Vuln
p; Authors:
======
Daniel Díez Tainta - (@DaniLabs)
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed
or implied, including the warrantie
ty in the
web-application is estimated as medium. (CVSS 3.3)
Credits & Authors:
==
Lawrence Amer - (
http://www.vulnerability-lab.com/show.php?user=Lawrence%20Amer )
Disclaimer & Information:
=
The information provided in this advisory is provi
amp; Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed
or implied, including the warranties of merchantability and capability for a
particular purpose. Vulnerability-Lab or its supplier
- (milans...@gmail.com)
[http://www.safehacking4mas.blogspot.in] [https://www.facebook.com/Mas.Hackers]
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warrantie
mation provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed
or implied, including the warranties of merchantability and capability for a
particular purpose. Vulnerability-Lab or its suppliers are not liable
in any
tent input validation web vulnerability in the
ifixit.com online service web-application is estimated as medium. (CVSS 3.8)
Credits & Authors:
==
Vulnerability Laboratory [Research Team] - Hadji Samir
(sa...@evolution-sec.com)
[http://www.vulnerability-lab.com/show.php?us
=
Vulnerability Laboratory [Research Team] - Benjamin Kunz Mejri
(resea...@vulnerability-lab.com) [www.vulnerability-lab.com]
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab dis
@vulnerability-lab.com) [www.vulnerability-lab.com]
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed
or implied, including the warranties of merchan
.@evolution-sec.com)
[www.vulnerability-lab.com] (https://twitter.com/cybercrimenews)
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed
or implied
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
SEC Consult Vulnerability Lab Security Advisory < 20160210-0 >
===
title: Multiple Vulnerabilities
product: Yeager CMS
vulnerable version:
vulnerability-lab.com]
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed
or implied, including the warranties of merchantability and capability for a
[Research Team] - Marco Onorati
[http://www.vulnerability-lab.com/show.php?user=Marco%20Onorati]
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expr
ww.vulnerability-lab.com/show.php?user=Hadji%20Samir]
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either
expressed or implied, including the warranties of
alidation web vulnerability in the
frontend of the getdpd web-application is estimated as medium. (CVSS 3.8)
Credits & Authors:
======
Vulnerability Laboratory [Research Team] - Hadji Samir [sa...@evolution-sec.com]
Disclaimer & Information:
=
The informat
he
frontend of the getdpd web-application is estimated as medium. (CVSS 4.2)
Credits & Authors:
==
Vulnerability Laboratory [Research Team] - Hadji Samir
[sa...@evolution-sec.com] [www.vulnerability-lab.com]
(http://www.vulnerability-lab.com/show.php?user=Hadji%20Samir)
s
Credits & Authors:
==
Daniel Díez Tainta - (@DaniLabs)
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed
or implied, inc
imer & Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed
or implied, including the warranties of merchantability and capability for a
particular purpose. Vulnerability-Lab or its su
sea...@vulnerability-lab.com) [www.vulnerability-lab.com]
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed
or implied, including the warranties
as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed
or implied, including the warranties of merchantability and capability for a
particular purpose. Vulnerability-Lab or its suppliers are not liable
in any case of damage, including direct, indirect, incidental,
=
Vulnerability Laboratory [Research Team] - Hadji Samir
[sa...@evolution-sec.com] [www.vulnerability-lab.com]
(http://www.vulnerability-lab.com/show.php?user=Hadji%20Samir)
Disclaimer & Information:
=
The information provided in this advisory is provided as it
application is estimated as high. (CVSS 7.3)
Credits & Authors:
==
Vulnerability Laboratory [Research Team] - Benjamin Kunz Mejri
(resea...@vulnerability-lab.com) [www.vulnerability-lab.com]
Disclaimer & Information:
=
The information provided in this advisory is provided as
[Research Team] - Marco Onorati
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed
or implied, including the warranties of merchantability and
as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed
or implied, including the warranties of merchantability and capability for a
particular purpose. Vulnerability-Lab or its suppliers are not liable
in any case of damage, including direct, indirect, incidental,
ts & Authors:
==
Iran Cyber Security Group - 0x3a (ICG SEC) [Iran-Cyber.Net]
[http://www.vulnerability-lab.com/show.php?user=Iran%20Cyber%20Security]
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
warrant
Benjamin Kunz Mejri
(resea...@vulnerability-lab.com) [www.vulnerability-lab.com]
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed
or implied, including t
rity Group - 0x3a (ICG SEC)
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed
or implied, including the warranties of merchantability and capabi
ing web vulnerabilities in the
web-application are estimated as medium. (CVSS 3.3)
Credits & Authors:
==
Iran Cyber Security Group - (ICG SEC)
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
war
ded as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed
or implied, including the warranties of merchantability and capability for a
particular purpose. Vulnerability-Lab or its suppliers are not liable
in any case of damage, including direct, indirect, i
y [Research Team] - Benjamin Kunz mejri
(resea...@vulnerability-lab.com) [www.vulnerability-lab.com]
Disclaimer & Information:
=====
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either exp
za.es]
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed
or implied, including the warranties of merchantability and capability for a
particular purpos
estimated as medium. (CVSS 3.2)
Credits & Authors:
==
Lawrence Amer - (
http://www.vulnerability-lab.com/show.php?user=Lawrence%20Amer )
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
warranty.
rity Risk:
==
The security risk of the persistent mail encoding web vulnerability and the
web-server validation misconfiguration are estimated as medium. (CVSS 3.7)
Credits & Authors:
==
Vulnerability Laboratory [Research Team] - Benjamin Kunz Mejri
(b...@evolution-sec.com
for more information.
SEC Consult Vulnerability Lab Security Advisory < 20160121-0 >
===
title: Deliberately hidden backdoor account
product: Several AMX (HARMAN Professional) device
d as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed
or implied, including the warranties of merchantability and capability for a
particular purpose. Vulnerability-Lab or its suppliers are not liable
in any case of damage, including direct, indirect, incidenta
out any
warranty. Vulnerability Lab disclaims all warranties, either expressed
or implied, including the warranties of merchantability and capability for a
particular purpose. Vulnerability-Lab or its suppliers are not liable
in any case of damage, including direct, indirect, incidental, consequ
ility Laboratory [Research Team] – Hadji Samir
(sa...@evolution-sec.com)
[http://www.vulnerability-lab.com/show.php?user=Hadji%20Samir]
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warrantie
tion:
=====
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed
or implied, including the warranties of merchantability and capability for a
particular purpose. Vulnerabil
==
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed
or implied, including the warranties of merchantability and capability for a
particular purpose. Vulnerability-Lab or its suppliers are not
a Turk and All Of My Friends
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed
or implied, including the warranties of merchantability and capability fo
print " Email: m...@live.fr"
Security Risk:
======
The security risk of the local buffer overflow (SEH) Vulnerability in the
converter software is estimated as high. (CVSS 7.5)
Credits & Authors:
==
ZwX - (http://zwx.fr) [ http://www.vulnerability-lab
- Benjamin Kunz Mejri
(b...@evolution-sec.com) [www.vulnerability-lab.com]
Disclaimer & Information:
=
The information provided in this advisory is provided as it is without any
warranty. Vulnerability Lab disclaims all warranties, either expressed
or implied, including the
SEC Consult Vulnerability Lab Security Advisory < 20151105-0 >
===
title: Insecure default configuration
product: various Ubiquiti Networks products
vulnerable version: see Vulnerable / tested ve
401 - 500 of 682 matches
Mail list logo