Databáze Hot News -

Databáze - Úvod  Articles  Články  Bugtraq  Malware   Phishing  Vulnerebility  SANS  Mobil Virus  Exploit  Útoky  IDS/IPS  Techniky hackerů  Papers

Rok - Úvod  2019  2018  2017  2016  2015  2014  2013  - 1  2  3  4  5  6  7  8  9  10  11  12  13  14  15  16  17  18  19  20  List  - 2018  2017  2016  2015  2014  2013 

 


2019


26.5.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

 

Exploint

 

24.5.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Adobe Flash Player CVE-2019-7837 Use After Free Arbitrary Code Execution Vulnerability
2019-05-24
http://www.securityfocus.com/bid/108312

Multiple F-Secure Windows Endpoint Protection Products Local Code Execution Vulnerability
2019-05-24
http://www.securityfocus.com/bid/108443

Multiple VMware Products CVE-2019-5519 Local Code Execution Vulnerability
2019-05-24
http://www.securityfocus.com/bid/107535

Atlassian Bitbucket Server CVE-2019-3397 Directory Traversal Vulnerability
2019-05-23
http://www.securityfocus.com/bid/108447

Exploint

Microsoft Internet Explorer Windows 10 1809 17763.316 - Scripting Engine Memory Corruption

Cyberoam General Authentication Client 2.1.2.7 - 'Server Address' Denial of Service (PoC)

Cyberoam Transparent Authentication Suite 2.1.2.5 - 'NetBIOS Name' Denial of Service (PoC)

Cyberoam Transparent Authentication Suite 2.1.2.5 - 'Fully Qualified Domain Name' Denial of Service (PoC)

Cyberoam SSLVPN Client 1.3.1.30 - 'HTTP Proxy' Denial of Service (PoC)

Cyberoam SSLVPN Client 1.3.1.30 - 'Connect To Server' Denial of Service (PoC)

Axessh 4.2 - 'Log file name' Local Stack-based Buffer Overflow

Opencart 3.0.3.2 - 'extension/feed/google_base' Denial of Service PoC

Fast AVI MPEG Joiner - 'License Name' Denial of Service (PoC)

Microsoft Windows 7/2003/2008 RDP - Remote Code Execution

Horde Webmail 5.2.22 - Multiple Vulnerabilities

TapinRadio 2.11.6 - 'Uername' Denial of Service (PoC)

TapinRadio 2.11.6 - 'Address' Denial of Service (PoC)

RarmaRadio 2.72.3 - 'Username' Denial of Service (PoC)

RarmaRadio 2.72.3 - 'Server' Denial of Service (PoC)

Carel pCOWeb < B1.2.1 - Credentials Disclosure

Carel pCOWeb < B1.2.1 - Cross-Site Scripting

AUO Solar Data Recorder < 1.3.0 - 'addr' Cross-Site Scripting

Zoho ManageEngine ServiceDesk Plus 9.3 - Cross-Site Scripting

Zoho ManageEngine ServiceDesk Plus < 10.5 - Improper Access Restrictions

BlueStacks 4.80.0.1060 - Denial of Service (PoC)

21.5.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

 

Exploint

GetSimpleCMS - Unauthenticated Remote Code Execution (Metasploit)

macOS < 10.14.5 / iOS < 12.3 XNU - 'in6_pcbdetach' Stale Pointer Use-After-Free

macOS < 10.14.5 / iOS < 12.3 XNU - Wild-read due to bad cast in stf_ioctl

macOS < 10.14.5 / iOS < 12.3 JavaScriptCore - AIR Optimization Incorrectly Removes Assignment to Register

macOS < 10.14.5 / iOS < 12.3 JavaScriptCore - Loop-Invariant Code Motion (LICM) in DFG JIT Leaves Stack Variable Uninitialized

macOS < 10.14.5 / iOS < 12.3 DFG JIT Compiler - 'HasIndexedProperty' Use-After-Free

Brocade Network Advisor 14.4.1 - Unauthenticated Remote Code Execution

WordPress Plugin WPGraphQL 0.2.3 - Multiple Vulnerabilities

Oracle CTI Web Service - 'EBS_ASSET_HISTORY_OPERATIONS' XML Entity Injection

Deluge 1.3.15 - 'Webseeds' Denial of Service (PoC)

Deluge 1.3.15 - 'URL' Denial of Service (PoC)

TP-LINK TL-WR840N v5 00000005 - Cross-Site Scripting

Moodle Jmol Filter 6.1 - Directory Traversal / Cross-Site Scripting

20.5.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

 

Exploint

Solaris 7/8/9 (SPARC) - 'dtprintinfo' Local Privilege Escalation (2)

Solaris 7/8/9 (SPARC) - 'dtprintinfo' Local Privilege Escalation (1)

Solaris 10 1/13 (Intel) - 'dtprintinfo' Local Privilege Escalation

BulletProof FTP Server 2019.0.0.50 - 'Storage-Path' Denial of Service (PoC)

BulletProof FTP Server 2019.0.0.50 - 'DNS Address' Denial of Service (PoC)

AbsoluteTelnet 10.16 - 'License name' Denial of Service (PoC)

docPrint Pro 8.0 - Denial of Service (PoC)

PCL Converter 2.7 - Denial of Service (PoC)

Encrypt PDF 2.3 - Denial of Service (PoC)

eLabFTW 1.8.5 - Arbitrary File Upload / Remote Code Execution

Huawei eSpace 1.1.11.103 - 'ContactsCtrl.dll' / 'eSpaceStatusCtrl.dll' ActiveX Heap Overflow

Huawei eSpace 1.1.11.103 - Image File Format Handling Buffer Overflow

Huawei eSpace 1.1.11.103 - DLL Hijacking

Huawei eSpace Meeting 1.1.11.103 - 'cenwpoll.dll' SEH Buffer Overflow (Unicode)

16.5.2019

Bugtraq

 

Malware

W32.Bulehero

Ransom.Robbinhood

Phishing

 

Vulnerebility

Symantec Messaging Gateway CVE-2019-9699 Information Disclosure Vulnerability
2019-05-16
http://www.securityfocus.com/bid/108303

Exploint

VMware Workstation 15.1.0 - DLL Hijacking

SEL AcSELerator Architect 2.2.24 - CPU Exhaustion Denial of Service

Axessh 4.2 - 'Log file name' Denial of Service (PoC)

ZOC Terminal v7.23.4 - 'Shell' Denial of Service (PoC)

ZOC Terminal v7.23.4 - 'Private key file' Denial of Service (PoC)

ZOC Terminal 7.23.4 - 'Script' Denial of Service (PoC)

JetAudio jetCast Server 2.0 - 'Log Directory' Local SEH Alphanumeric Encoded Buffer Overflow

WeChat for Android 7.0.4 - 'vcodec2_hls_filter' Denial of Service

DeepSound 1.0.4 - SQL Injection

15.5.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Dnsmasq VU#973527 Multiple Security Vulnerabilities
2019-05-15
http://www.securityfocus.com/bid/101085

RETIRED: Multiple Siemens SCALANCE Products Multiple Security Vulnerabilities
2019-05-15
http://www.securityfocus.com/bid/101977

Mozilla Firefox ESR CVE-2017-7843 Security Bypass Vulnerability
2019-05-15
http://www.securityfocus.com/bid/102112

Mozilla Firefox MFSA2017-27 Multiple Security Vulnerabilities
2019-05-15
http://www.securityfocus.com/bid/102039

RETIRED: libssh2 'src/kex.c' Security Bypass Vulnerability
2019-05-15
http://www.securityfocus.com/bid/82514

Drupal Novalnet Payment Module- Ubercart Module SQL Injection Vulnerability
2019-05-15
http://www.securityfocus.com/bid/75039

RETIRED: Drupal Novalnet Payment Module SQL Injection Vulnerability
2019-05-15
http://www.securityfocus.com/bid/75040

QNAP QTAP Qualcomm components Multiple Unspecified Security Vulnerabilities
2019-05-15
http://www.securityfocus.com/bid/97072

Qemu 'hw/display/cirrus_vga.c' Remote Code Execution Vulnerability
2019-05-15
http://www.securityfocus.com/bid/97955

RETIRED: Citrix XenServer Multiple Security Vulnerabilities
2019-05-15
http://www.securityfocus.com/bid/102129

Google Android Multiple Qualcomm Components Multiple Security Vulnerabilities

Microsoft Office Access Connectivity Engine CVE-2019-0945 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108192

Adobe Acrobat and Reader APSB19-18 Multiple Information Disclosure Vulnerabilities
2019-05-14
http://www.securityfocus.com/bid/108326

Adobe Acrobat and Reader APSB19-18 Multiple Arbitrary Code Execution Vulnerabilities
2019-05-14
http://www.securityfocus.com/bid/108325

SAP Solution Manager CVE-2019-0293 Remote Authorization Bypass Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108324

Adobe Acrobat and Reader CVE-2019-7824 Arbitrary Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108323

Adobe Acrobat and Reader APSB19-18 Multiple Arbitrary Code Execution Vulnerabilities
2019-05-14
http://www.securityfocus.com/bid/108322

Adobe Acrobat and Reader CVE-2019-7784 Arbitrary Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108321

Adobe Acrobat and Reader Use After Free Multiple Arbitrary Code Execution Vulnerabilities
2019-05-14
http://www.securityfocus.com/bid/108320

Adobe Acrobat and Reader CVE-2019-7779 Arbitrary Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108319

Adobe Media Encoder CVE-2019-7844 Out of Bounds Read Information Disclosure Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108318

Adobe Media Encoder CVE-2019-7842 Use After Free Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108317

SAP BusinessObjects Business Intelligence CVE-2019-0287 Information Disclosure Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108316

Adobe Acrobat and Reader CVE-2019-7820 Arbitrary Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108315

SAP E-Commerce CVE-2019-0298 Cross Site Scripting Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108314

SAP Solution Manager CVE-2019-0291 Local Information Disclosure Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108313

Adobe Flash Player CVE-2019-7837 Use After Free Arbitrary Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108312

SAP BusinessObjects Business Intelligence CVE-2019-0289 Information Disclosure Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108311

Microsoft Internet Explorer CVE-2019-0995 Security Bypass Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108310

Microsoft Dynamics On-Premise CVE-2019-1008 Security Bypass Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108309

Microsoft Azure Active Directory Connect CVE-2019-1000 Remote Privilege Escalation Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108308

SAP Treasury and Risk Management CVE-2019-0280 Unauthorized Access Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108307

SAP Identity Management CVE-2019-0301 Remote Privilege Escalation Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108306

Microsoft Internet Explorer and Edge CVE-2019-0940 Remote Memory Corruption Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108278

Microsoft Edge CVE-2019-0938 Remote Privilege Escalation Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108276

Microsoft Internet Explorer CVE-2019-0930 Information Disclosure Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108275

Microsoft Windows Remote Desktop Services CVE-2019-0708 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108273

Microsoft Windows JET Database Engine CVE-2019-0902 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108272

Microsoft Windows JET Database Engine CVE-2019-0901 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108271

Microsoft Windows JET Database Engine CVE-2019-0900 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108270

Microsoft Windows JET Database Engine CVE-2019-0899 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108269

Microsoft Windows JET Database Engine CVE-2019-0898 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108268

Microsoft Windows JET Database Engine CVE-2019-0897 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108267

Microsoft Windows JET Database Engine CVE-2019-0896 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108266

Microsoft Windows JET Database Engine CVE-2019-0895 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108265

Microsoft Windows JET Database Engine CVE-2019-0894 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108264

Microsoft Windows JET Database Engine CVE-2019-0893 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108263

Microsoft Windows JET Database Engine CVE-2019-0891 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108262

Microsoft Windows JET Database Engine CVE-2019-0890 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108261

Microsoft Windows JET Database Engine CVE-2019-0889 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108260

Microsoft Internet Explorer CVE-2019-0929 Remote Memory Corruption Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108259

Microsoft Edge Chakra Scripting Engine CVE-2019-0937 Remote Memory Corruption Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108258

Microsoft Edge Chakra Scripting Engine CVE-2019-0933 Remote Memory Corruption Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108257

Microsoft Windows Defender Application Control CVE-2019-0733 Local Security Bypass Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108256

Microsoft Edge Chakra Scripting Engine CVE-2019-0927 Remote Memory Corruption Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108254

Microsoft Edge CVE-2019-0926 Remote Memory Corruption Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108253

Microsoft Windows CVE-2019-0734 Local Privilege Escalation Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108252

Microsoft Edge Chakra Scripting Engine CVE-2019-0925 Remote Memory Corruption Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108251

Microsoft Edge Chakra Scripting Engine CVE-2019-0924 Remote Memory Corruption Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108250

Microsoft SQL Server CVE-2019-0819 Information Disclosure Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108249

Microsoft Edge Chakra Scripting Engine CVE-2019-0923 Remote Memory Corruption Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108248

Microsoft Edge Chakra Scripting Engine CVE-2019-0922 Remote Memory Corruption Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108246

Microsoft .NET CVE-2019-0820 Denial of Service Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108245

Microsoft Internet Explorer CVE-2019-0921 Spoofing Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108244

Microsoft Windows Error Reporting CVE-2019-0863 Local Privilege Escalation Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108243

Microsoft Internet Explorer Scripting Engine CVE-2019-0918 Remote Memory Corruption Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108242

Microsoft .NET CVE-2019-0864 Denial of Service Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108241

Microsoft Azure DevOps Server and Team Foundation Server Cross Site Scripting Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108239

Microsoft Edge Chakra Scripting Engine CVE-2019-0917 Remote Memory Corruption Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108238

Microsoft Edge Chakra Scripting Engine CVE-2019-0916 Remote Memory Corruption Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108237

Microsoft Edge Chakra Scripting Engine CVE-2019-0915 Remote Memory Corruption Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108236

Microsoft Edge Chakra Scripting Engine CVE-2019-0914 Remote Memory Corruption Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108235

Microsoft Windows Kernel CVE-2019-0881 Remote Privilege Escalation Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108234

Microsoft Edge Chakra Scripting Engine CVE-2019-0913 Remote Memory Corruption Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108233

Microsoft ASP.NET Core CVE-2019-0980 Denial of Service Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108232

Microsoft Windows GDI Component CVE-2019-0882 Information Disclosure Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108231

Microsoft Windows OLE CVE-2019-0885 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108230

Microsoft Edge Chakra Scripting Engine CVE-2019-0912 Remote Memory Corruption Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108229

Microsoft Windows Hyper-V CVE-2019-0886 Local Information Disclosure Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108228

Microsoft Internet Explorer and Edge Scripting Engine Remote Memory Corruption Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108227

Microsoft Windows GDI Component CVE-2019-0758 Information Disclosure Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108226

Microsoft Windows Diagnostics Hub CVE-2019-0727 Local Privilege Escalation Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108225

Microsoft Windows DHCP Server CVE-2019-0725 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108224

Microsoft Internet Explorer and Edge Scripting Engine Remote Memory Corruption Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108223

Microsoft Windows Win32k CVE-2019-0892 Local Privilege Escalation Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108222

Microsoft Windows NDIS CVE-2019-0707 Local Privilege Escalation Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108221

Microsoft Skype for Android CVE-2019-0932 Information Disclosure Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108220

Microsoft Windows Storage Service CVE-2019-0931 Local Privilege Escalation Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108219

Microsoft SharePoint Server CVE-2019-0963 Cross Site Scripting Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108218

Microsoft Windows CVE-2019-0936 Local Privilege Escalation Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108217

Microsoft SharePoint Server CVE-2019-0958 Remote Privilege Escalation Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108216

Microsoft SharePoint Server CVE-2019-0957 Remote Privilege Escalation Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108215

Microsoft Windows Unified Write Filter CVE-2019-0942 Local Privilege Escalation Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108214

Microsoft SharePoint Server CVE-2019-0956 Information Disclosure Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108213

Microsoft Windows GDI+ Component CVE-2019-0903 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108212

Microsoft Word CVE-2019-0953 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108211

Microsoft NuGet Package Manager CVE-2019-0976 Tampering Security Bypass Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108210

Microsoft SharePoint Server CVE-2019-0952 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108209

Microsoft ASP.NET Core CVE-2019-0982 Denial of Service Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108208

Microsoft ASP.NET Core CVE-2019-0981 Denial of Service Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108207

Microsoft Azure DevOps Server and Team Foundation Server Cross Site Scripting Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108206

Microsoft Azure DevOps Server and Team Foundation Server Information Disclosure Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108205

Microsoft SharePoint Server CVE-2019-0951 Spoofing Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108203

Microsoft SharePoint Server CVE-2019-0950 Spoofing Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108201

Microsoft Windows GDI Component CVE-2019-0961 Information Disclosure Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108199

Microsoft SharePoint Server CVE-2019-0949 Spoofing Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108198

Microsoft Office Access Connectivity Engine CVE-2019-0947 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108194

Microsoft Office Access Connectivity Engine CVE-2019-0946 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108193

Exploint

Legrand BTicino Driver Manager F454 1.0.51 - Cross-Site Request Forgery / Cross-Site Scripting

CommSy 8.6.5 - SQL injection

Tomabo MP4 Converter 3.25.22 - Denial of Service (PoC)

PasteShr 1.6 - Multiple SQL Injection

Schneider Electric U.Motion Builder 1.3.4 - 'track_import_export.php object_id' Unauthenticated Command Injection

TwistedBrush Pro Studio 24.06 - '.srp' Denial of Service (PoC)

TwistedBrush Pro Studio 24.06 - 'Script Recorder' Denial of Service (PoC)

TwistedBrush Pro Studio 24.06 - 'Resize Image' Denial of Service (PoC)

Selfie Studio 2.17 - 'Resize Image' Denial of Service (PoC)

D-Link DWL-2600AP - Multiple OS Command Injection

Sales ERP 8.1 - Multiple SQL Injection

PHP-Fusion 9.03.00 - 'Edit Profile' Remote Code Execution (Metasploit)

14.5.2019

Bugtraq

 

Malware

Ransom.Ryuk

Phishing

 

Vulnerebility

 

Exploint

TwistedBrush Pro Studio 24.06 - '.srp' Denial of Service (PoC)

TwistedBrush Pro Studio 24.06 - 'Script Recorder' Denial of Service (PoC)

TwistedBrush Pro Studio 24.06 - 'Resize Image' Denial of Service (PoC)

Selfie Studio 2.17 - 'Resize Image' Denial of Service (PoC)

D-Link DWL-2600AP - Multiple OS Command Injection

Sales ERP 8.1 - Multiple SQL Injection

PHP-Fusion 9.03.00 - 'Edit Profile' Remote Code Execution (Metasploit)

13.5.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

 

Exploint

OpenProject 5.0.0 - 8.3.1 - SQL Injection

Google Chrome V8 - Turbofan JSCallReducer::ReduceArrayIndexOfIncludes Out-of-Bounds Read/Write

XOOPS 2.5.9 - SQL Injection

SOCA Access Control System 180612 - Cross-Site Request Forgery (Add Admin)

SOCA Access Control System 180612 - SQL Injection

SOCA Access Control System 180612 - Information Disclosure

DNSS 2.1.8 - Denial of Service (PoC)

SpotMSN 2.4.6 - Denial of Service (PoC)

10.5.2019

Bugtraq

 

Malware

 

Phishing

Service.Team

10th May 2019

[Important] : Your account has
been temporarily restricted

Vulnerebility

Multiple VMware Products CVE-2019-5518 Out of Bounds Read Write Local Code Execution Vulnerability
2019-05-10
http://www.securityfocus.com/bid/107541

Exploint

PHPRunner 10.1 - Denial of Service (PoC)

ASPRunner.NET 10.1 - Denial of Service (PoC)

SpotPaltalk 1.1.5 - Denial of Service (PoC)

SpotIM 2.2 - Denial of Service (PoC)

TheHive Project Cortex < 1.15.2 - Server-Side Request Forgery

jetCast Server 2.0 - Denial of Service (PoC)

9.5.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

 

Exploint

Convert Video jetAudio 8.1.7 - Denial of Service (PoC)

Lyric Maker 2.0.1.0 - Denial of Service (PoC)

Lyric Video Creator 2.1 - '.mp3' Denial of Service (PoC)

Zoho ManageEngine ADSelfService Plus 5.7 < 5702 build - Cross-Site Scripting

Oracle Weblogic Server - 'AsyncResponseService' Deserialization Remote Code Execution (Metasploit)

PostgreSQL 9.3 - COPY FROM PROGRAM Command Execution (Metasploit)

Google Chrome 72.0.3626.119 - 'FileReader' Use-After-Free (Metasploit)

Lotus Domino 8.5.3 - 'EXAMINE' Stack Buffer Overflow DEP/ASLR Bypass (NSA's EMPHASISMINE)

8.5.2019

Bugtraq

 

Malware

Ransom.MegaCortex

Phishing

 

Vulnerebility

Multiple F5 BIG-IP Products CVE-2019-6619 Denial of Service Vulnerability
2019-05-08
http://www.securityfocus.com/bid/108190

Symantec AV Engine CVE-2019-9698 Arbitrary File Deletion Vulnerability
2019-05-08
http://www.securityfocus.com/bid/108128

Cisco Firepower Threat Defense Software CVE-2019-1703 Denial of Service Vulnerability
2019-05-07
http://www.securityfocus.com/bid/108170

Jenkins Multiple Security Vulnerabilities
2019-05-07
http://www.securityfocus.com/bid/108159

Linux Kernel CVE-2018-20836 Race Condition Vulnerability
2019-05-07
http://www.securityfocus.com/bid/108196

Cisco Elastic Services Controller CVE-2019-1867 Authentication Bypass Vulnerability
2019-05-07
http://www.securityfocus.com/bid/108184

Exploint

 

7.5.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Jenkins Multiple Security Vulnerabilities
2019-05-07
http://www.securityfocus.com/bid/108159

Apache Karaf CVE-2019-0226 Arbitrary File Overwrite Vulnerability
2019-05-06
http://www.securityfocus.com/bid/108174

Exploint

Easy Chat Server 3.1 - 'message' Denial of Service (PoC)

Admin Express 1.2.5.485 - 'Folder Path' Local SEH Alphanumeric Encoded Buffer Overflow

Prinect Archive System 2015 Release 2.6 - Cross-Site Scripting

6.5.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

 

Exploint

iOS 12.1.3 - 'cfprefsd' Memory Corruption

NSClient++ 0.5.2.35 - Privilege Escalation

microASP (Portal+) CMS - 'pagina.phtml?explode_tree' SQL Injection

PHPads 2.0 - 'click.php3?bannerID' SQL Injection

Xitami Web Server 2.5 - Remote Buffer Overflow (SEH + Egghunter)

ReadyAPI 2.5.0 / 2.6.0 - Remote Code Execution

LG Supersign EZ CMS - Remote Code Execution (Metasploit)

5.5.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

 

Exploint

Wordpress Plugin Social Warfare < 3.5.3 - Remote Code Execution

SolarWinds DameWare Mini Remote Control 10.0 - Denial of Service

Blue Angel Software Suite - Command Execution

Windows PowerShell ISE - Remote Code Execution

Zotonic < 0.47.0 mod_admin - Cross-Site Scripting

Instagram Auto Follow - Authentication Bypass

Crestron AM/Barco wePresent WiPG/Extron ShareLink/Teq AV IT/SHARP PN-L703WA/Optoma WPS-Pro/Blackbox HD WPS/InFocus LiteShow - Remote Command Injection

2.5.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Oracle WebLogic Server Deserialization Remote Command Execution Vulnerability
2019-05-02
http://www.securityfocus.com/bid/108074

Microsoft Visual Studio 'asm' Remote Memory Corruption Vulnerability
2019-05-02
http://www.securityfocus.com/bid/108122

Eclipse OpenJ9 CVE-2019-10245 Denial of Service Vulnerability
2019-05-01
http://www.securityfocus.com/bid/108094

Exploint

Ruby On Rails - DoubleTap Development Mode secret_key_base Remote Code Execution (Metasploit)

1.5.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Eclipse OpenJ9 CVE-2019-10245 Denial of Service Vulnerability
2019-05-01
http://www.securityfocus.com/bid/108094

Linux Kernel CVE-2019-11599 Local Race Condition Vulnerability
2019-05-01
http://www.securityfocus.com/bid/108113

Microsoft Visual Studio 'asm' Remote Memory Corruption Vulnerability
2019-04-30
http://www.securityfocus.com/bid/108122

Philips Tasy EMR CVE-2019-6562 Cross Site Scripting Vulnerability
2019-04-30
http://www.securityfocus.com/bid/108120

Rockwell Automation ControlLogix ICSA-19-120-01 Multiple Buffer Overflow Vulnerabilities
2019-04-30
http://www.securityfocus.com/bid/108118

ImageMagick CVE-2019-10131 Denial of Service Vulnerability
2019-04-30
http://www.securityfocus.com/bid/108117

Citrix SD-WAN CVE-2019-11550 Information Disclosure Vulnerability
2019-04-30
http://www.securityfocus.com/bid/108114

Exploint

CentOS Web Panel 0.9.8.793 (Free) / v0.9.8.753 (Pro) / 0.9.8.807 (Pro) - Domain Field (Add DNS Zone) Cross-Site Scripting

Pimcore < 5.71 - Unserialize RCE (Metasploit)

AIS logistics ESEL-Server - Unauth SQL Injection RCE (Metasploit)

Linux - Missing Locking Between ELF coredump code and userfaultfd VMA Modification

Oracle Weblogic 10.3.6.0.0 / 12.1.3.0.0 - Remote Code Execution

DeviceViewer 3.12.0.1 - 'user' SEH Overflow

SpotAuditor 5.2.6 - 'Name' Denial of Service (PoC)

Agent Tesla Botnet - Information Disclosure

Hyvikk Fleet Manager - Shell Upload

Moodle 3.6.3 - 'Install Plugin' Remote Command Execution (Metasploit)

Joomla! Component JiFile 2.3.1 - Arbitrary File Download

Domoticz 4.10577 - Unauthenticated Remote Command Execution

Spring Cloud Config 2.1.x - Path Traversal (Metasploit)

HumHub 1.3.12 - Cross-Site Scripting

Intelbras IWR 3000N 1.5.0 - Cross-Site Request Forgery

29.4.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Oracle WebLogic Server Deserialization Remote Command Execution Vulnerability
2019-04-29
http://www.securityfocus.com/bid/108074

Exploint

 

28.4.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Ghostscript Multiple Security Bypass Vulnerabilities
2019-04-26
http://www.securityfocus.com/bid/105122

Ghostscript CVE-2018-18284 Security Bypass Vulnerability
2019-04-26
http://www.securityfocus.com/bid/107451

Ghostscript 'shading_param' Remote Code Execution Vulnerability
2019-04-26
http://www.securityfocus.com/bid/105178

Atlassian Confluence Server and Confluence Data Center Directory Traversal Vulnerability
2019-04-26
http://www.securityfocus.com/bid/108067

Exploint

systemd - DynamicUser can Create setuid Binaries when Assisted by Another Process

Apache Pluto 3.0.0 / 3.0.1 - Persistent Cross-Site Scripting

NSauditor 3.1.2.0 - 'Name' Denial of Service (PoC)

NSauditor 3.1.2.0 - 'Community' Denial of Service (PoC)

26.4.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Ghostscript Multiple Security Bypass Vulnerabilities
2019-04-26
http://www.securityfocus.com/bid/105122

Ghostscript CVE-2018-18284 Security Bypass Vulnerability
2019-04-26
http://www.securityfocus.com/bid/107451

Ghostscript 'shading_param' Remote Code Execution Vulnerability
2019-04-26
http://www.securityfocus.com/bid/105178

Atlassian Confluence Server and Confluence Data Center Directory Traversal Vulnerability
2019-04-26
http://www.securityfocus.com/bid/108067

Exploint

RARLAB WinRAR 5.61 - ACE Format Input Validation Remote Code Execution (Metasploit)

Lavavo CD Ripper 4.20 - 'License Activation Name' Buffer Overflow (SEH)

AnMing MP3 CD Burner 2.0 - Denial of Service (PoC)

osTicket 1.11 - Cross-Site Scripting / Local File Inclusion

JioFi 4G M2S 1.0.2 - Denial of Service

JioFi 4G M2S 1.0.2 - 'mask' Cross-Site Scripting

Backup Key Recovery 2.2.4 - Denial of Service (PoC)

HeidiSQL 10.1.0.5464 - Denial of Service (PoC)

25.4.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Atlassian Confluence Server and Confluence Data Center Directory Traversal Vulnerability
2019-04-25
http://www.securityfocus.com/bid/108067

Linux Kernel 'perf_event_open()' Function Local Information Disclosure Vulnerability
2019-04-24
http://www.securityfocus.com/bid/89937

GraphicsMagick CVE-2019-11505 Heap Buffer Overflow Vulnerability
2019-04-24
http://www.securityfocus.com/bid/108063

TIBCO ActiveMatrix BPM CVE-2019-8995 Open Redirection Vulnerability
2019-04-24
http://www.securityfocus.com/bid/108062

Exploint

JioFi 4G M2S 1.0.2 - Denial of Service

JioFi 4G M2S 1.0.2 - 'mask' Cross-Site Scripting

Backup Key Recovery 2.2.4 - Denial of Service (PoC)

HeidiSQL 10.1.0.5464 - Denial of Service (PoC)

Google Chrome 72.0.3626.121 / 74.0.3725.0 - 'NewFixedDoubleArray' Integer Overflow

VirtualBox 6.0.4 r128413 - COM RPC Interface Code Injection Host Privilege Escalation

24.4.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Linux Kernel 'perf_event_open()' Function Local Information Disclosure Vulnerability
2019-04-24
http://www.securityfocus.com/bid/89937

Palo Alto Networks Global Protect Client CVE-2019-1573 Local Information Disclosure Vulnerability
2019-04-23
http://www.securityfocus.com/bid/107868

Linux Kernel CVE-2019-11487 Multiple Denial of Service Vulnerabilities
2019-04-23
http://www.securityfocus.com/bid/108054

Fujifilm FCR Capsula X/Carbon X Denial of Service and Access Bypass Vulnerabilities
2019-04-23
http://www.securityfocus.com/bid/108052

Apache Zeppelin CVE-2017-12619 Session Fixation Vulnerability
2019-04-23
http://www.securityfocus.com/bid/108050

Rockwell Automation MicroLogix 1400 and CompactLogix 5370 Controllers Open Redirection Vulnerability
2019-04-23
http://www.securityfocus.com/bid/108049

Google Chrome Prior to 74.0.3729.108 Multiple Security Vulnerabilities
2019-04-23
http://www.securityfocus.com/bid/108048

Apache Zeppelin Security Bypass and HTML Injection Vulnerabilities
2019-04-23
http://www.securityfocus.com/bid/108047

Apache Qpid Proton CVE-2019-0223 Man in the Middle Security Bypass Vulnerability
2019-04-23
http://www.securityfocus.com/bid/108044

Symantec Endpoint Protection CVE-2018-12244 Security Bypass Vulnerability
2019-04-23
http://www.securityfocus.com/bid/107999

Multiple Symantec Products CVE-2018-18369 DLL Loading Local Privilege Escalation Vulnerability
2019-04-23
http://www.securityfocus.com/bid/107997

Symantec Endpoint Protection Manager CVE-2018-18367 Local Privilege Escalation Vulnerability
2019-04-23
http://www.securityfocus.com/bid/107996

Multiple Symantec Products CVE-2018-18366 Local Information Disclosure Vulnerability
2019-04-23
http://www.securityfocus.com/bid/107994

Exploint

VirtualBox 6.0.4 r128413 - COM RPC Interface Code Injection Host Privilege Escalation

23.4.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Palo Alto Networks Global Protect Client CVE-2019-1573 Local Information Disclosure Vulnerability
2019-04-23
http://www.securityfocus.com/bid/107868

PHP Multiple Heap Buffer Overflow Vulnerabilities
2019-04-22
http://www.securityfocus.com/bid/107794

Exploint

Linux - 'page->_refcount' Overflow via FUSE

Linux - Missing Locking in Siemens R3964 Line Discipline Race Condition

systemd - Lack of Seat Verification in PAM Module Permits Spoofing Active Session to polkit

Ross Video DashBoard 8.5.1 - Insecure Permissions

22.4.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

PHP Multiple Heap Buffer Overflow Vulnerabilities
2019-04-22
http://www.securityfocus.com/bid/107794

Exploint

UliCMS 2019.2 / 2019.1 - Multiple Cross-Site Scripting

ManageEngine Applications Manager 14.0 - Authentication Bypass / Remote Command Execution (Metasploit)

Msvod 10 - Cross-Site Request Forgery (Change User Information)

74CMS 5.0.1 - Cross-Site Request Forgery (Add New Admin User)

LabF nfsAxe 3.7 Ping Client - 'Host IP' Buffer Overflow (Direct Ret)

Google Chrome 73.0.3683.103 V8 JavaScript Engine - Out-of-Memory in Invalid Table Size Denial of Service (PoC)

WordPress Plugin Contact Form Builder 1.0.67 - Cross-Site Request Forgery / Local File Inclusion

QNAP myQNAPcloud Connect 1.3.4.0317 - 'Username/Password' Denial of Service

Ease Audio Converter 5.30 - '.mp4' Denial of Service (PoC)

20.4.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

 

Exploint

Atlassian Confluence Widget Connector Macro - Velocity Template Injection (Metasploit)

SystemTap 1.3 - MODPROBE_OPTIONS Privilege Escalation (Metasploit)

Oracle Business Intelligence / XML Publisher 11.1.1.9.0 / 12.2.1.3.0 / 12.2.1.4.0 - XML External Entity Injection

Oracle Business Intelligence 11.1.1.9.0 / 12.2.1.3.0 / 12.2.1.4.0 - Directory Traversal

19.4.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

OpenSSH CVE-2018-20685 Access Bypass Vulnerability
2019-04-18
http://www.securityfocus.com/bid/106531

Microsoft Windows Win32k CVE-2019-0859 Local Privilege Escalation Vulnerability
2019-04-18
http://www.securityfocus.com/bid/107763

Spring Security and Spring Framework CVE-2018-1258 Authorization Bypass Vulnerability
2019-04-18
http://www.securityfocus.com/bid/104222

FreeType 2 CVE-2017-8105 Out of Bounds Write Heap Buffer Overflow Vulnerability
2019-04-18
http://www.securityfocus.com/bid/99093

FreeType 2 CVE-2017-8287 Out of Bounds Write Heap Buffer Overflow Vulnerability
2019-04-18
http://www.securityfocus.com/bid/99091

Apache Tika CVE-2018-11761 XML External Entity Denial of Service Vulnerability
2019-04-18
http://www.securityfocus.com/bid/105514

cURL/libcURL Multiple Buffer Overflow Vulnerabilities
2019-04-18
http://www.securityfocus.com/bid/106950

Apache Batik CVE-2018-8013 Information Disclosure Vulnerability
2019-04-18
http://www.securityfocus.com/bid/104252

Apache Tomcat CVE-2018-1305 Security Bypass Vulnerability
2019-04-18
http://www.securityfocus.com/bid/103144

SLF4J 'EventData' Constructor Remote Code Execution Vulnerability
2019-04-18
http://www.securityfocus.com/bid/103737

Spring Framework CVE-2018-15756 Denial-Of-Service Vulnerability
2019-04-18
http://www.securityfocus.com/bid/105703

Apache ActiveMQ CVE-2018-11775 Man in the Middle Security Bypass Vulnerability
2019-04-18
http://www.securityfocus.com/bid/105335

Cisco IOS Software CVE-2018-0161 Denial of Service Vulnerability
2019-04-18
http://www.securityfocus.com/bid/103573

IBM Java SDK CVE-2018-1656 Directory Traversal Vulnerability
2019-04-18
http://www.securityfocus.com/bid/105118

Apache Log4j CVE-2017-5645 Remote Code Execution Vulnerability
2019-04-18
http://www.securityfocus.com/bid/97702

JQuery CVE-2015-9251 Cross Site Scripting Vulnerability
2019-04-18
http://www.securityfocus.com/bid/105658

FasterXML Jackson-databind CVE-2018-14718 Remote Code Execution Vulnerability
2019-04-18
http://www.securityfocus.com/bid/106601

Exploint

LibreOffice < 6.0.7 / 6.1.3 - Macro Code Execution (Metasploit)

Netwide Assembler (NASM) 2.14rc15 - NULL Pointer Dereference (PoC)

ManageEngine Applications Manager 11.0 < 14.0 - SQL Injection / Remote Code Execution (Metasploit)

Evernote 7.9 - Code Execution via Path Traversal

18.4.2019

Bugtraq

 

Malware

Infostealer.Scranos

Phishing

 

Vulnerebility

Apache Log4j CVE-2017-5645 Remote Code Execution Vulnerability
2019-04-18
http://www.securityfocus.com/bid/97702

JQuery CVE-2015-9251 Cross Site Scripting Vulnerability
2019-04-18
http://www.securityfocus.com/bid/105658

FasterXML Jackson-databind CVE-2018-14718 Remote Code Execution Vulnerability
2019-04-18
http://www.securityfocus.com/bid/106601

Exploint

Oracle Java Runtime Environment - Heap Corruption During TTF font Rendering in GlyphIterator::setCurrGlyphID

Oracle Java Runtime Environment - Heap Corruption During TTF font Rendering in sc_FindExtrema4

29.3.2019

Bugtraq

 

Malware

W97M.Astraunlock

Phishing

Info

29th March 2019

AOL ( New Terms )

Vulnerebility

Linux Kernel 'create_elf_tables()' Function Local Integer Overflow Vulnerability
2019-03-29
http://www.securityfocus.com/bid/105407

Exploint

CentOS Web Panel 0.9.8.789 - NameServer Field Persistent Cross-Site Scripting

Oracle Weblogic Server Deserialization RCE - Raw Object (Metasploit)

CMS Made Simple (CMSMS) Showtime2 - File Upload RCE (Metasploit)

gnutls 3.6.6 - 'verify_crt()' Use-After-Free

28.3.2019

Bugtraq

 

Malware

Backdoor.Tinimeti

Hacktool.Gobrut

Phishing

 

Vulnerebility

Huawei PCManager Privilege Escalation and Remote Code Execution Vulnerabilities
2019-03-27
http://www.securityfocus.com/bid/106838

Cisco IOS XE Software CVE-2019-1756 Command Injection Vulnerability
2019-03-27
http://www.securityfocus.com/bid/107598

Cisco IOS and IOS XE Software CVE-2019-1762 Local Information Disclosure Vulnerability
2019-03-27
http://www.securityfocus.com/bid/107594

Cisco IOS XE Software CVE-2019-1743 Arbitrary File Upload Vulnerability
2019-03-27
http://www.securityfocus.com/bid/107591

Cisco IOS XE Software CVE-2019-1754 Remote Privilege Escalation Vulnerability
2019-03-27
http://www.securityfocus.com/bid/107590

Cisco IOS and IOS XE Software CVE-2019-1752 Denial of Service Vulnerability
2019-03-27
http://www.securityfocus.com/bid/107589

Cisco IOS XE Software CVE-2019-1745 Local Command Injection Vulnerability
2019-03-27
http://www.securityfocus.com/bid/107588

Cisco IOS XE Software CVE-2019-1755 Command Injection Vulnerability
2019-03-27
http://www.securityfocus.com/bid/107380

Mozilla Firefox and Firefox ESR Remote Memory Corruption and Buffer Overflow Vulnerabilities
2019-03-26
http://www.securityfocus.com/bid/107548

Net-SNMP CVE-2018-18065 Remote Denial of Service Vulnerability
2019-03-26
http://www.securityfocus.com/bid/106265

Multiple Phoenix Contact Products CVE-2019-9743 Command Injection Vulnerability
2019-03-26
http://www.securityfocus.com/bid/107596

Exploint

Base64 Decoder 1.1.2 - Local Buffer Overflow (SEH Egghunter)

Jettweb PHP Hazır Rent A Car Sitesi Scripti V2 - 'arac_kategori_id' SQL Injection

BigTree 4.3.4 CMS - Multiple SQL Injection

Job Portal 3.1 - 'job_submit' SQL Injection

Microsoft Visio 2016 16.0.4738.1000 - 'Log in accounts' Denial of Service

i-doit 1.12 - 'qr.php' Cross-Site Scripting

WordPress Plugin Loco Translate 2.2.1 - Local File Inclusion

WordPress Plugin Anti-Malware Security and Brute-Force Firewall 4.18.63 - Local File Inclusion

Fat Free CRM 0.19.0 - HTML Injection

Airbnb Clone Script - Multiple SQL Injection

Thomson Reuters Concourse & Firm Central < 2.13.0097 - Directory Traversal / Local File Inclusion

27.3.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Huawei PCManager Privilege Escalation and Remote Code Execution Vulnerabilities
2019-03-27
http://www.securityfocus.com/bid/106838

Mozilla Firefox and Firefox ESR Remote Memory Corruption and Buffer Overflow Vulnerabilities
2019-03-26
http://www.securityfocus.com/bid/107548

Net-SNMP CVE-2018-18065 Remote Denial of Service Vulnerability
2019-03-26
http://www.securityfocus.com/bid/106265

PCMan's FTP Server 'CDUP' Command Buffer Overflow Vulnerability
2019-03-26
http://www.securityfocus.com/bid/107574

Symantec Norton Core CVE-2019-9695 Unspecified Arbitrary Code Execution Vulnerability
2019-03-26
http://www.securityfocus.com/bid/107478

Exploint

Jettweb Hazır Rent A Car Scripti V4 - SQL Injection

Microsoft Windows 7/2008 - 'Win32k' Denial of Service (PoC)

Spidermonkey - IonMonkey Type Inference is Incorrect for Constructors Entered via OSR

SJS Simple Job Script - SQL Injection / Cross-Site Scripting

Titan FTP Server Version 2019 Build 3505 - Directory Traversal / Local File Inclusion

XooDigital - 'p' SQL Injection

XooGallery - Multiple SQL Injection

Rukovoditel ERP & CRM 2.4.1 - 'path' Cross-Site Scripting

Jettweb Php Hazır İlan Sitesi Scripti V2 - SQL Injection

26.3.2019

Bugtraq

 

Malware

Trojan.Susafone

Phishing

 

Vulnerebility

Mozilla Firefox and Firefox ESR Remote Memory Corruption and Buffer Overflow Vulnerabilities
2019-03-26
http://www.securityfocus.com/bid/107548

Net-SNMP CVE-2018-18065 Remote Denial of Service Vulnerability
2019-03-26
http://www.securityfocus.com/bid/106265

oVirt Engine CVE-2019-3879 Security Bypass Vulnerability
2019-03-25
http://www.securityfocus.com/bid/107561

Zoho ManageEngine ServiceDesk Plus CVE-2017-9376 Multiple Local File Include Vulnerabilities
2019-03-25
http://www.securityfocus.com/bid/107558

Exploint

VMware Workstation 14.1.5 / VMware Player 15 - Host VMX Process COM Class Hijack Privilege Escalation

VMware Workstation 14.1.5 / VMware Player 15.0.2 - Host VMX Process Impersonation Hijack Privilege Escalation

Zeeways Matrimony CMS - SQL Injection

Zeeways Jobsite CMS - 'id' SQL Injection

Jettweb PHP Hazır Haber Sitesi Scripti V3 - SQL Injection

Jettweb PHP Hazır Haber Sitesi Scripti V2 - SQL Injection (Authentication Bypass)

Jettweb PHP Hazır Haber Sitesi Scripti V1 - SQL Injection

X-NetStat Pro 5.63 - Local Buffer Overflow

Apache CouchDB 2.3.1 - Cross-Site Request Forgery / Cross-Site Scripting

24.3.2019

Bugtraq

 

Malware

Ransom.Ploc

Backdoor.Picigail

Phishing

 

Vulnerebility

 

Exploint

 

24.3.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

 

Exploint

snap - seccomp BBlacklist for TIOCSTI can be Circumvented

Inout Article Base CMS - SQL Injection

22.3.2019

Bugtraq

 

Malware

 

Phishing

Amazon Order

22nd March 2019

Amazon Order Confirmation

Vulnerebility

Oracle Java SE CVE-2019-2426 Information Disclosure Vulnerability
2019-03-22
http://www.securityfocus.com/bid/106590

IBM Java SDK CVE-2018-1890 Local Privilege Escalation Vulnerability
2019-03-22
http://www.securityfocus.com/bid/107448

QEMU CVE-2019-8934 Local Information Disclosure Vulnerability
2019-03-22
http://www.securityfocus.com/bid/107115

PuTTY Multiple Security Vulnerabilities
2019-03-22
http://www.securityfocus.com/bid/107484

Cloud Foundry Cloud Controller API CVE-2017-8037 Incomplete Fix Information Disclosure Vulnerability
2019-03-22
http://www.securityfocus.com/bid/100448

Opencontainers runc CVE-2019-5736 Local Command Execution Vulnerability
2019-03-22
http://www.securityfocus.com/bid/106976

Mozilla Firefox Unspecified Remote Code Execution Vulnerability
2019-03-22
http://www.securityfocus.com/bid/107534

Mozilla Firefox Unspecified Remote Code Execution Vulnerability
2019-03-22
http://www.securityfocus.com/bid/107533

Microsoft Edge Unspecified Security Bypass Vulnerability
2019-03-22
http://www.securityfocus.com/bid/107532

Ghostscript CVE-2019-3838 Security Bypass Vulnerability
2019-03-22
http://www.securityfocus.com/bid/107520

Atlassian SourceTree CVE-2018-20235 Arbitrary Code Execution Vulnerability
2019-03-21
http://www.securityfocus.com/bid/107407

Atlassian SourceTree CVE-2018-20234 Arbitrary Code Execution Vulnerability
2019-03-21
http://www.securityfocus.com/bid/107414

Red Hat JBoss BPMS CVE-2016-6343 Cross Site Scripting Vulnerability
2019-03-21
http://www.securityfocus.com/bid/96987

Exploint

Meeplace Business Review Script - 'id' SQL Injection

Matri4Web Matrimony Website Script - Multiple SQL Injection

21.3.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Red Hat JBoss BPMS CVE-2016-6343 Cross Site Scripting Vulnerability
2019-03-21
http://www.securityfocus.com/bid/96987

Mozilla Firefox MFSA2019-01 Multiple Security Vulnerabilities
2019-03-20
http://www.securityfocus.com/bid/106773

Gemalto Sentinel UltraPro ICSA-19-073-02 Security Vulnerability
2019-03-20
http://www.securityfocus.com/bid/107415

Cisco IP Phone 7800 Series and 8800 Series CVE-2019-1716 Remote Code Execution Vulnerability
2019-03-20
http://www.securityfocus.com/bid/107503

Cisco IP Phone 8800 Series CVE-2019-1764 Cross Site Request Forgery Vulnerability
2019-03-20
http://www.securityfocus.com/bid/107502

Cisco IP Phone 8800 Series CVE-2019-1765 Path Traversal Arbitrary File Write Vulnerability
2019-03-20
http://www.securityfocus.com/bid/107500

Cisco IP Phone 8800 Series CVE-2019-1763 Unauthorized Access Vulnerability
2019-03-20
http://www.securityfocus.com/bid/107499

Cisco IP Phone 8800 Series CVE-2019-1766 Denial of Service Vulnerability
2019-03-20
http://www.securityfocus.com/bid/107498

Exploint

Bootstrapy CMS - Multiple SQL Injection

Canarytokens 2019-03-01 - Detection Bypass

Placeto CMS Alpha v4 - 'page' SQL Injection

uHotelBooking System - 'system_page' SQL Injection

The Company Business Website CMS - Multiple Vulnerabilities

Rails 5.2.1 - Arbitrary File Content Disclosure

DVD X Player 5.5.3 - '.plf' Buffer Overflow

Netartmedia Vlog System - 'email' SQL Injection

20.3.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Mozilla Firefox MFSA2019-01 Multiple Security Vulnerabilities
2019-03-20
http://www.securityfocus.com/bid/106773

Gemalto Sentinel UltraPro ICSA-19-073-02 Security Vulnerability
2019-03-20
http://www.securityfocus.com/bid/107415

Oracle PeopleSoft Enterprise PeopleTools Multiple Remote Security Vulnerabilities
2019-03-19
http://www.securityfocus.com/bid/106592

Oracle E-Business Suite Cpujan2019 Multiple Security Vulnerabilities
2019-03-19
http://www.securityfocus.com/bid/106620

Oracle Web Cache CVE-2019-2438 Remote Security Vulnerability
2019-03-19
http://www.securityfocus.com/bid/106612

Oracle Java SE/Java SE Embedded/JRockit CVE-2018-3180 Remote Security Vulnerability
2019-03-19
http://www.securityfocus.com/bid/105617

Exploint

PLC Wireless Router GPN2.4P21-C-CN - Cross-Site Request Forgery

PLC Wireless Router GPN2.4P21-C-CN - Incorrect Access Control

202CMS v10beta - Multiple SQL Injection

NetShareWatcher 1.5.8.0 - Local SEH Buffer Overflow

Netartmedia PHP Business Directory 4.2 - SQL Injection

Netartmedia PHP Dating Site - SQL Injection

Netartmedia Jobs Portal 6.1 - SQL Injection

Netartmedia PHP Real Estate Agency 4.0 - SQL Injection

Netartmedia PHP Car Dealer - SQL Injection

19.3.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Oracle PeopleSoft Enterprise PeopleTools Multiple Remote Security Vulnerabilities
2019-03-19
http://www.securityfocus.com/bid/106592

Oracle E-Business Suite Cpujan2019 Multiple Security Vulnerabilities
2019-03-19
http://www.securityfocus.com/bid/106620

Oracle Web Cache CVE-2019-2438 Remote Security Vulnerability
2019-03-19
http://www.securityfocus.com/bid/106612

Oracle Java SE/Java SE Embedded/JRockit CVE-2018-3180 Remote Security Vulnerability
2019-03-19
http://www.securityfocus.com/bid/105617

PHP Information Disclosure and Heap Buffer Overflow Vulnerabilities
2019-03-18
http://www.securityfocus.com/bid/107156

Exploint

Microsoft Edge - Flash click2play Bypass with CObjectElement::FinalCreateObject

Microsoft VBScript - VbsErase Memory Corruption

Microsoft Internet Explorer 11 - VBScript Execution Policy Bypass in MSHTML

Google Chrome < M73 - FileSystemOperationRunner Use-After-Free

Google Chrome < M73 - MidiManagerWin Use-After-Free

Google Chrome < M73 - Data Race in ExtensionsGuestViewMessageFilter

Google Chrome < M73 - Double-Destruction Race in StoragePartitionService

Jenkins 2.137 and Pipeline Groovy Plugin 2.61 - ACL Bypass and Metaprogramming RCE (Metasploit)

libseccomp < 2.4.0 - Incorrect Compilation of Arithmetic Comparisons

Netartmedia Real Estate Portal 5.0 - SQL Injection

Netartmedia PHP Mall 4.1 - SQL Injection

Advanced Host Monitor 11.92 beta - Local Buffer Overflow

Netartmedia Event Portal 2.0 - 'Email' SQL Injection

eNdonesia Portal 8.7 - Multiple Vulnerabilities

MyBB Upcoming Events Plugin 1.32 - Cross-Site Scripting

Gila CMS 1.9.1 - Cross-Site Scripting

18.3.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

PHP Information Disclosure and Heap Buffer Overflow Vulnerabilities
2019-03-18
http://www.securityfocus.com/bid/107156

RSA Archer GRC Platform CVE-2019-3716 Local Information Disclosure Vulnerability
2019-03-18
http://www.securityfocus.com/bid/107406

Microsoft Azure Linux Guest Agent CVE-2019-0804 Local Information Disclosure Vulnerability
2019-03-18
http://www.securityfocus.com/bid/107410

IBM Spectrum Scale CVE-2018-1723 Information Disclosure Vulnerability
2019-03-18
http://www.securityfocus.com/bid/105975

Eclipse OpenJ9 CVE-2018-12539 Multiple Privilege Escalation Vulnerabilities
2019-03-18
http://www.securityfocus.com/bid/105126

Oracle Java SE CVE-2018-2973 Remote Security Vulnerability
2019-03-18
http://www.securityfocus.com/bid/104773

IBM Java SDK CVE-2018-1656 Directory Traversal Vulnerability
2019-03-18
http://www.securityfocus.com/bid/105118

Django CVE-2019-6975 Denial of Service Vulnerability
2019-03-18
http://www.securityfocus.com/bid/106964

Exploint

BMC Patrol Agent - Privilege Escalation Cmd Execution (Metasploit)

TheCarProject v2 - Multiple SQL Injection

WinAVI iPod/3GP/MP4/PSP Converter 4.4.2 - Denial of Service

WinMPG Video Convert 9.3.5 - Denial of Service

17.3.2019

Bugtraq

 

Malware

 

Phishing

Amazon Order

16th March 2019

Amazon Order Confirmation

Vulnerebility

 

Exploint

WinRAR 5.61 - Path Traversal

15.3.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Microsoft Windows Win32k CVE-2019-0808 Local Privilege Escalation Vulnerability
2019-03-15
http://www.securityfocus.com/bid/107331

Google Chrome Prior to 73.0.3683.75 Multiple Security Vulnerabilities
2019-03-15
http://www.securityfocus.com/bid/107363

Oracle Java SE CVE-2019-2422 Information Disclosure Vulnerability
2019-03-14
http://www.securityfocus.com/bid/106596

Exploint

Moodle 3.4.1 - Remote Code Execution

Laundry CMS - Multiple Vulnerabilities

Vembu Storegrid Web Interface 4.4.0 - Multiple Vulnerabilities

ICE HRM 23.0 - Multiple Vulnerabilities

Mail Carrier 2.5.1 - 'MAIL FROM' Buffer Overflow

CMS Made Simple Showtime2 Module 3.6.2 - Authenticated Arbitrary File Upload

NetData 1.13.0 - HTML Injection

14.3.2019

Bugtraq

 

Malware

Backdoor.Filensfer

Backdoor.Fakeslic

Phishing

 

Vulnerebility

Google Chrome Prior to 73.0.3683.75 Multiple Security Vulnerabilities
2019-03-15
http://www.securityfocus.com/bid/107363

Oracle Java SE CVE-2019-2422 Information Disclosure Vulnerability
2019-03-14
http://www.securityfocus.com/bid/106596

Oracle Java SE CVE-2019-2449 Remote Security Vulnerability
2019-03-14
http://www.securityfocus.com/bid/106597

Oracle Java SE CVE-2019-2426 Information Disclosure Vulnerability
2019-03-14
http://www.securityfocus.com/bid/106590

Exploint

Apache UNO / LibreOffice Version: 6.1.2 / OpenOffice 4.1.6 API - Remote Code Execution

FTPGetter Standard 5.97.0.177 - Remote Code Execution

Pegasus CMS 1.0 - 'extra_fields.php' Plugin Remote Code Execution

Intel Modular Server System 10.18 - Cross-Site Request Forgery (Change Admin Password)

13.3.2019

Bugtraq

 

Malware

Exp.CVE-2019-0808

Exp.CVE-2019-0797

W32.Extrat.C

Phishing

 

Vulnerebility

Google Chrome CVE-2019-5786 'FileReader' Use After Free Arbitrary Code Execution Vulnerability
2019-03-13
http://www.securityfocus.com/bid/107213

Wibu Systems WibuKey DRM Multiple Input Validation Vulnerabilities
2019-03-13
http://www.securityfocus.com/bid/107005

Microsoft NuGet Package Manager CVE-2019-0757 Tampering Security Bypass Vulnerability
2019-03-13
http://www.securityfocus.com/bid/107285

SAP BusinessObjects Business Intelligence CVE-2019-0268 XML External Entity Injection Vulnerability
2019-03-13
http://www.securityfocus.com/bid/107364

Vixie Cron CVE-2019-9705 Denial of Service Vulnerability
2019-03-13
http://www.securityfocus.com/bid/107378

Exploint

Microsoft Windows - .reg File / Dialog Box Message Spoofing

Microsoft Windows MSHTML Engine - "Edit" Remote Code Execution

Apache Tika-server < 1.18 - Command Injection

Core FTP Server FTP / SFTP Server v2 Build 674 - 'MDTM' Directory Traversal

Core FTP Server FTP / SFTP Server v2 Build 674 - 'SIZE' Directory Traversal

WordPress Plugin GraceMedia Media Player 1.0 - Local File Inclusion

pfSense 2.4.4-p1 (HAProxy Package 0.59_14) - Persistent Cross-Site Scripting

elFinder PHP Connector < 2.1.48 - exiftran Command Injection (Metasploit)

12.3.2019

Bugtraq

 

Malware

Backdoor.Sarhus

Backdoor.Xoratag

Phishing

 

Vulnerebility

SAP Business Client Unspecified Security Vulnerability
2019-03-12
http://www.securityfocus.com/bid/104436

SAP Enterprise Financial Services CVE-2018-2484 Remote Authorization Bypass Vulnerability
2019-03-12
http://www.securityfocus.com/bid/106477

SAP NetWeaver Java AS CVE-2019-0275 Cross Site Scripting Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107362

SAP Work and Inventory Manager CVE-2019-0274 Denial of Service Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107360

SAP BusinessObjects Business Intelligence Platform CVE-2019-0269 Cross Site Scripting Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107359

Adobe Photoshop CC CVE-2019-7094 Arbitrary Code Execution Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107357

SAP HANA Extended Application Services CVE-2019-0277 XML External Entity Injection Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107356

SAP Netweaver ABAP Server CVE-2019-0271 XML External Entity Injection Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107355

Adobe Digital Editions CVE-2019-7095 Unspecified Heap Buffer Overflow Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107354

Multiple SAP Products CVE-2019-0276 Remote Authorization Bypass Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107353

Microsoft Windows Win32k CVE-2019-0808 Local Privilege Escalation Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107331

Microsoft Windows Win32k CVE-2019-0797 Local Privilege Escalation Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107330

Microsoft Windows GDI Component CVE-2019-0614 Information Disclosure Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107250

Microsoft Windows VBScript Engine CVE-2019-0772 Remote Code Execution Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107239

Microsoft Windows DHCP Client CVE-2019-0726 Remote Code Execution Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107236

Microsoft Windows DHCP Client CVE-2019-0698 Remote Code Execution Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107235

Microsoft Windows Deployment Services TFTP Server CVE-2019-0603 Remote Code Execution Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107229

Microsoft Office SharePoint CVE-2019-0778 Cross Site Scripting Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107226

Microsoft Windows Subsystem for Linux CVE-2019-0682 Local Privilege Escalation Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107225

Microsoft Office Access Connectivity Engine CVE-2019-0748 Remote Code Execution Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107224

Microsoft Windows ActiveX CVE-2019-0784 Remote Code Execution Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107222

Microsoft Windows DHCP Client CVE-2019-0697 Remote Code Execution Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107221

Microsoft Windows Kernel CVE-2019-0755 Local Information Disclosure Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107194

Microsoft Windows Kernel CVE-2019-0702 Local Information Disclosure Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107193

Google Chrome CVE-2019-5786 'FileReader' Use After Free Arbitrary Code Execution Vulnerability
2019-03-07
http://www.securityfocus.com/bid/107213

Exploint

Core FTP 2.0 build 653 - 'PBSZ' Denial of Service (PoC)

PilusCart 1.4.1 - Cross-Site Request Forgery (Add Admin)

11.3.2019

Bugtraq

 

Malware

 

Phishing

Amazon Order

11th March 2019

Amazon Order Confirmation

Vulnerebility

 

Exploint

OpenKM 6.3.2 < 6.3.7 - Remote Command Execution (Metasploit)

Liferay CE Portal < 7.1.2 ga3 - Remote Command Execution (Metasploit)

NetSetMan 4.7.1 - Local Buffer Overflow (SEH Unicode)

Linux Kernel 4.4 (Ubuntu 16.04) - 'snd_timer_user_ccallback()' Kernel Pointer Leak

Flexpaper PHP Publish Service 2.3.6 - Remote Code Execution

PRTG Network Monitor 18.2.38 - Authenticated Remote Code Execution

10.3.2019

Bugtraq

 

Malware

Trojan.Bitartra

Phishing

AOL Member Service

8th March 2019

AOL Account Notification
Regarding AOL Oath.

Vulnerebility

 

Exploint

DirectAdmin 1.55 - 'CMD_ACCOUNT_ADMIN' Cross-Site Request Forgery

McAfee ePO 5.9.1 - Registered Executable Local Access Bypass

OrientDB 3.0.17 GA Community Edition - Cross-Site Request Forgery / Cross-Site Scripting

8.3.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

 

Exploint

Drupal < 8.5.11 / < 8.6.10 - RESTful Web Services unserialize() Remote Command Execution (Metasploit)

Imperva SecureSphere 13.x - 'PWS' Command Injection (Metasploit)

FreeBSD - Intel SYSRET Privilege Escalation (Metasploit)

Anyburn 4.3 x86 - 'Copy disc to image file' Buffer Overflow (Unicode) (SEH)

QNAP TS-431 QTS < 4.2.2 - Remote Command Execution (Metasploit)

Kados R10 GreenBee - Multiple SQL Injection

7.3.2019

Bugtraq

 

Malware

Win32/Filecoder.LockedFile.I

Phishing

 

Vulnerebility

Google Chrome CVE-2019-5786 'FileReader' Use After Free Arbitrary Code Execution Vulnerability
2019-03-07
http://www.securityfocus.com/bid/107213

Linux kernel CVE-2019-7221 Local Denial of Service Vulnerability
2019-03-07
http://www.securityfocus.com/bid/107294

Linux kernel CVE-2019-9213 Local Denial of Service Vulnerability
2019-03-06
http://www.securityfocus.com/bid/107296

Exploint

 

6.3.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

RSLinx Classic CVE-2019-6553 Stack Buffer Overflow Vulnerability
2019-03-05
http://www.securityfocus.com/bid/107293

Exploint

Android - getpidcon() Usage in Hardware binder ServiceManager Permits ACL Bypass

Android - binder Use-After-Free via racy Initialization of ->allow_user_free

Linux < 4.20.14 - Virtual Address 0 is Mappable via Privileged write() to /proc/*/mem

5.3.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

OpenDocMan 1.3.4 - 'search.php where' SQL Injection

Exploint

 

4.3.2019

Bugtraq

 

Malware

 

Phishing

ExxonMobil Smart Card

3rd March 2019

Get 12 cents off* every gallon
at 11,000+ Exxon & Mobil
stations

Vulnerebility

Multiple Cisco Products CVE-2019-1674 Local Command Injection Vulnerability
2019-03-04
http://www.securityfocus.com/bid/107184

Microsoft Teams CVE-2019-5922 DLL Loading Remote Code Execution Vulnerability
2019-03-04
http://www.securityfocus.com/bid/107200

Microsoft Windows CVE-2019-5921 DLL Loading Remote Code Execution Vulnerability
2019-03-04
http://www.securityfocus.com/bid/107218

EMC RSA Authentication Manager CVE-2019-3711 Information Disclosure Vulnerability
2019-03-03
http://www.securityfocus.com/bid/107210

Exploint

Microsoft Edge Chakra 1.11.4 - Read Permission via Type Confusion

Fiberhome AN5506-04-F RP2669 - Persistent Cross-Site Scripting

WordPress Plugin Cerber Security, Antispam & Malware Scan 8.0 - Multiple Bypass Vulnerabilities

Craft CMS 3.1.12 Pro - Cross-Site Scripting

Bolt CMS 3.6.4 - Cross-Site Scripting

MarcomCentral FusionPro VDP Creator < 10.0 - Directory Traversal

Raisecom XPON ISCOMHT803G-U_2.0.0_140521_R4.1.47.002 - Remote Code Execution

zzzphp CMS 1.6.1 - Cross-Site Request Forgery

Splunk Enterprise 7.2.4 - Custom App RCE (Persistent Backdoor - Custom Binary Payload)

Booked Scheduler 2.7.5 - Remote Command Execution (Metasploit)

FileZilla 3.40.0 - 'Local search' / 'Local site' Denial of Service (PoC)

OOP CMS BLOG 1.0 - Multiple Cross-Site Request Forgery

OOP CMS BLOG 1.0 - Multiple SQL Injection

elFinder 2.1.47 - Command Injection vulnerability in the PHP connector

CMSsite 1.0 - Multiple Cross-Site Request Forgery

1.3.2019

Bugtraq

 

Malware

Exp.CVE-2018-20250

Phishing

 

Vulnerebility

Juniper Junos CVE-2017-2303 Denial of Service Vulnerability
2019-03-01
http://www.securityfocus.com/bid/95408

Mozilla Firefox CVE-2018-18511 Information Disclosure Vulnerability
2019-03-01
http://www.securityfocus.com/bid/107009

Multiple PSI GridConnect GmbH Products CVE-2019-6528 Cross Site Scripting Vulnerability
2019-02-28
http://www.securityfocus.com/bid/107201

Exploint

macOS XNU - Copy-on-Write Behavior Bypass via Mount of User-Owned Filesystem Image

Linux < 4.14.103 / < 4.19.25 - Out-of-Bounds Read and Write in SNMP NAT Module

tcpdump < 4.9.3 - Multiple Heap-Based Out-of-Bounds Reads

Google Chrome < M72 - FileWriterImpl Use-After-Free

Google Chrome < M72 - Use-After-Free in RenderProcessHostImpl Binding for P2PSocketDispatcherHost

Google Chrome < M72 - RenderFrameHostImpl::CreateMediaStreamDispatcherHost Use-After-Free

Google Chrome < M72 - PaymentRequest Service Use-After-Free

28.2.2019

Bugtraq

 

Malware

 

Phishing

Wells Fargo Online

28th February 2019

Your Account Security
Notification

Vulnerebility

Google Chrome PDF File Handling Information Disclosure Vulnerability
2019-02-28
http://www.securityfocus.com/bid/107182

GNU wget CVE-2018-20483 Local Information Disclosure Vulnerability
2019-02-27
http://www.securityfocus.com/bid/106358

Tcpdump CVE-2018-19519 Stack Based Buffer Overflow Vulnerability
2019-02-27
http://www.securityfocus.com/bid/106098

Multiple Cisco Products CVE-2019-1674 Local Command Injection Vulnerability
2019-02-27
http://www.securityfocus.com/bid/107184

Exploint

Feng Office 3.7.0.5 - Remote Command Execution (Metasploit)

TransMac 12.3 - Denial of Service (PoC)

Usermin 1.750 - Remote Command Execution (Metasploit)

Joomla! Component J2Store < 3.3.7 - SQL Injection

Joomla! Component J2Store < 3.3.7 - SQL Injection

FTP Server 1.32 - Denial of Service

Simple Online Hotel Reservation System - Cross-Site Request Forgery (Delete Admin)

Simple Online Hotel Reservation System - Cross-Site Request Forgery (Add Admin)

Simple Online Hotel Reservation System - SQL Injection

27.2.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Tcpdump CVE-2018-19519 Stack Based Buffer Overflow Vulnerability
2019-02-27
http://www.securityfocus.com/bid/106098

PHP CVE-2019-9023 Multiple Heap Buffer Overflow Vulnerabilities
2019-02-26
http://www.securityfocus.com/bid/106765

PHP 'phar_detect_phar_fname_ext()' Heap Buffer Overflow Vulnerability
2019-02-26
http://www.securityfocus.com/bid/106747

GNU wget CVE-2018-20483 Local Information Disclosure Vulnerability
2019-02-26
http://www.securityfocus.com/bid/106358

F5 BIG-IP APM CVE-2019-6595 Cross Site Scripting Vulnerability
2019-02-26
http://www.securityfocus.com/bid/107173

Exploint

 

26.2.2019

Bugtraq

 

Malware

 

Phishing

�Dr.Ernest Kwamina Yedu Addiso

25th February 2019

From Bank of Ghana

Vulnerebility

PHP CVE-2019-9023 Multiple Heap Buffer Overflow Vulnerabilities
2019-02-26
http://www.securityfocus.com/bid/106765

PHP 'phar_detect_phar_fname_ext()' Heap Buffer Overflow Vulnerability
2019-02-26
http://www.securityfocus.com/bid/106747

GNU wget CVE-2018-20483 Local Information Disclosure Vulnerability
2019-02-26
http://www.securityfocus.com/bid/106358

Exploint

 

25.2.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Wireshark Multiple Denial of Service Vulnerabilities
2019-02-25
http://www.securityfocus.com/bid/106482

WinRAR Multiple Security Vulnerabilities
2019-02-25
http://www.securityfocus.com/bid/106948

Exploint

Drupal < 8.6.9 - REST Module Remote Code Execution

Xlight FTP Server 3.9.1 - Buffer Overflow (PoC)

Advance Gift Shop Pro Script 2.0.3 - SQL Injection

News Website Script 2.0.5 - SQL Injection

PHP Ecommerce Script 2.0.6 - Cross-Site Scripting / SQL Injection

Jenkins Plugin Script Security 1.49/Declarative 1.3.4/Groovy 2.60 - Remote Code Execution

24.2.2019

Bugtraq

 

Malware

 

Phishing

Dr.Ernest Kwamina Yedu Addison

23rd February 2019

PAYMENT FROM BANK OF GHANA

American Standard Walk-In Tubs

22nd February 2019

Walk In Tubs Only By American
Standard

Cannabliss Labs

22nd February 2019

The new cannabidiol medicine
that is sweeping the USA

Vulnerebility

 

Exploint

Drupal < 8.6.10 / < 8.5.11 - REST Module Remote Code Execution

Teracue ENC-400 - Command Injection / Missing Authentication

Micro Focus Filr 3.4.0.217 - Path Traversal / Local Privilege Escalation

Nuuo Central Management - Authenticated SQL Server SQL Injection (Metasploit)

WebKit JSC - reifyStaticProperty Needs to set the PropertyAttribute::CustomAccessor flag for CustomGetterSetter

22.2.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Rockwell Automation Allen-Bradley PowerMonitor Multiple Security Vulnerabilities
2019-02-22
http://www.securityfocus.com/bid/106333

Opencontainers runc CVE-2019-5736 Local Command Execution Vulnerability
2019-02-21
http://www.securityfocus.com/bid/106976

Exploint

Quest NetVault Backup Server < 11.4.5 - Process Manager Service SQL Injection / Remote Code Execution

AirDrop 2.0 - Denial of Service (DoS)

MikroTik RouterOS < 6.43.12 (stable) / < 6.42.12 (long-term) - Firewall and NAT Bypass

ScreenStream 3.0.15 - Denial of Service

Virtual VCR Max .0a - '.vcr' Buffer Overflow (PoC)

RealTerm Serial Terminal 2.0.0.70 - 'Echo Port' Buffer Overflow (SEH)

EI-Tube 3 - SQL Injection

Valentina Studio 9.0.5 Linux - 'Host' Buffer Overflow (PoC)

C4G Basic Laboratory Information System (BLIS) 3.4 - SQL Injection

Memu Play 6.0.7 - Privilege Escalation

21.2.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Opencontainers runc CVE-2019-5736 Local Command Execution Vulnerability
2019-02-21
http://www.securityfocus.com/bid/106976

Cisco Webex Meetings Online CVE-2019-1680 Security Bypass Vulnerability
2019-02-21
http://www.securityfocus.com/bid/106939

WPA2 Key Reinstallation Multiple Security Weaknesses
2019-02-21
http://www.securityfocus.com/bid/101274

Intel Data Center Manager SDK CVE-2019-0112 Denial of Service Vulnerability
2019-02-21
http://www.securityfocus.com/bid/107064

Intel Data Center Manager SDK CVE-2019-0111 Local Insecure File Permissions Vulnerability
2019-02-21
http://www.securityfocus.com/bid/107067

Intel Data Center Manager SDK CVE-2019-0110 Information Disclosure Vulnerability
2019-02-21
http://www.securityfocus.com/bid/107071

Intel Data Center Manager SDK CVE-2019-0103 Local Information Disclosure Vulnerability
2019-02-21
http://www.securityfocus.com/bid/107074

Intel Data Center Manager SDK Multiple Privilege Escalation Vulnerabilities
2019-02-21
http://www.securityfocus.com/bid/107069

Microsoft .NET Framework and Visual Studio CVE-2019-0657 Spoofing Vulnerability
2019-02-21
http://www.securityfocus.com/bid/106890

Microsoft Windows Device Guard CVE-2019-0631 Local Security Bypass Vulnerability
2019-02-21
http://www.securityfocus.com/bid/106875

Microsoft Windows Device Guard CVE-2019-0632 Local Security Bypass Vulnerability
2019-02-21
http://www.securityfocus.com/bid/106880

Microsoft Windows Device Guard CVE-2019-0627 Local Security Bypass Vulnerability
2019-02-21
http://www.securityfocus.com/bid/106857

Exploint

AirDrop 2.0 - Denial of Service (DoS)

MikroTik RouterOS < 6.43.12 (stable) / < 6.42.12 (long-term) - Firewall and NAT Bypass

ScreenStream 3.0.15 - Denial of Service

Virtual VCR Max .0a - '.vcr' Buffer Overflow (PoC)

RealTerm Serial Terminal 2.0.0.70 - 'Echo Port' Buffer Overflow (SEH)

EI-Tube 3 - SQL Injection

Valentina Studio 9.0.5 Linux - 'Host' Buffer Overflow (PoC)

C4G Basic Laboratory Information System (BLIS) 3.4 - SQL Injection

Memu Play 6.0.7 - Privilege Escalation

20.2.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

systemd CVE-2019-6454 Local Denial of Service Vulnerability
2019-02-20
http://www.securityfocus.com/bid/107081

LibVNCServer Incomplete Fix Multiple Heap Buffer Overflow Vulnerabilities
2019-02-19
http://www.securityfocus.com/bid/106825

Opencontainers runc CVE-2019-5736 Local Command Execution Vulnerability
2019-02-19
http://www.securityfocus.com/bid/106976

Elasticsearch Logstash CVE-2019-7612 Information Disclosure Vulnerability
2019-02-19
http://www.securityfocus.com/bid/107090

Exploint

Belkin Wemo UPnP - Remote Code Execution (Metasploit)

MatrixSSL < 4.0.2 - Stack Buffer Overflow Verifying x.509 Certificates

Android Kernel < 4.8 - ptrace seccomp Filter Bypass

FaceTime - Texture Processing Memory Corruption

WinRAR 5.61 - '.lng' Denial of Service

FTPShell Server 6.83 - 'Account name to ban' Denial of Service (PoC)

HotelDruid 2.3 - Cross-Site Scripting

Apple macOS 10.13.5 - Local Privilege Escalation

Jenkins - Remote Code Execution

Ask Expert Script 3.0.5 - Cross Site Scripting / SQL Injection

Zoho ManageEngine Netflow Analyzer Professional 7.0.0.2 - Path Traversal / Cross-Site Scripting

XAMPP 5.6.8 - SQL Injection / Persistent Cross-Site Scripting

eDirectory - SQL Injection

BulletProof FTP Server 2019.0.0.50 - 'SMTP Server' Denial of Service (PoC)

Valentina Studio 9.0.4 - 'Host' Denial of Service (PoC)

Zuz Music 2.1 - 'zuzconsole/___contact ' Persistent Cross-Site Scripting

Listing Hub CMS 1.0 - 'pages.php id' SQL Injection

Find a Place CMS Directory 1.5 - 'assets/external/data_2.php cate' SQL Injection

NetSetMan 4.7.1 - 'Workgroup' Denial of Service (PoC)

MaxxAudio Drivers WavesSysSvc64.exe 1.6.2.0 - Local Privilege Escalation

19.2.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

LibVNCServer Incomplete Fix Multiple Heap Buffer Overflow Vulnerabilities
2019-02-19
http://www.securityfocus.com/bid/106825

Opencontainers runc CVE-2019-5736 Local Command Execution Vulnerability
2019-02-19
http://www.securityfocus.com/bid/106976

Multiple F5 BIG-IP Products CVE-2018-15319 Denial of Service Vulnerability
2019-02-18
http://www.securityfocus.com/bid/107052

SolarWinds Orion Network Performance Monitor (NPM) CVE-2019-8917 Remote Code Execution Vulnerability
2019-02-18
http://www.securityfocus.com/bid/107061

QEMU CVE-2019-3812 Out-Of-Bounds Read Local Information Disclosure Vulnerability
2019-02-18
http://www.securityfocus.com/bid/107059

Exploint

 

18.2.2019

Bugtraq

 

Malware

Trojan.Tinukebot.B

Phishing

 

Vulnerebility

Multiple F5 BIG-IP Products CVE-2018-15319 Denial of Service Vulnerability
2019-02-18
http://www.securityfocus.com/bid/107052

Exploint

WordPress Plugin WooCommerce - GloBee (cryptocurrency) Payment Gateway 1.1.1 - Payment Bypass / Unauthorized Order Status Spoofing

Zoho ManageEngine ServiceDesk Plus (SDP) < 10.0 build 10012 - Arbitrary File Upload

Oracle Java Runtime Environment - Heap Out-of-Bounds Read During TTF Font Rendering in AlternateSubstitutionSubtable::process

Oracle Java Runtime Environment - Heap Out-of-Bounds Read During TTF Font Rendering in ExtractBitMap_blocClass

Oracle Java Runtime Environment - Heap Out-of-Bounds Read During TTF Font Rendering in OpenTypeLayoutEngine::adjustGlyphPositions

Oracle Java Runtime Environment - Heap Out-of-Bounds Read During OTF Font Rendering in glyph_CloseContour

Comodo Dome Firewall 2.7.0 - Cross-Site Scripting

ArangoDB Community Edition 3.4.2-1 - Cross-Site Scripting

Apache CouchDB 2.3.0 - Cross-Site Scripting

Webiness Inventory 2.3 - 'ProductModel' Arbitrary File Upload

M/Monit 3.7.2 - Privilege Escalation

NBMonitor 1.6.5.0 - 'Key' Denial of Service (PoC)

CMSsite 1.0 - 'post' SQL Injection

MISP 2.4.97 - SQL Command Execution via Command Injection in STIX Module

Master IP CAM 01 3.3.4.2103 - Remote Command Execution

qdPM 9.1 - 'search[keywords]' Cross-Site Scripting

qdPM 9.1 - 'type' Cross-Site Scripting

mIRC < 7.55 - Remote Command Execution Using Argument Injection Through Custom URI Protocol Handlers

Realterm Serial Terminal 2.0.0.70 - Local Buffer Overflow (SEH)

Realterm Serial Terminal 2.0.0.70 - Denial of Service

17.2.2019

Bugtraq

 

Malware

 

Phishing

Support

17th February 2019

Update Your Information !!!

Vulnerebility

 

Exploint

UniSharp Laravel File Manager 2.0.0-alpha7 - Arbitrary File Upload

Linux - 'kvm_ioctl_create_device()' NULL Pointer Dereference

qdPM 9.1 - 'search_by_extrafields[]' SQL Injection

Jinja2 2.10 - 'from_string' Server Side Template Injection

VSCO 1.1.1.0 - Denial of Service (PoC)

MyBB Trash Bin Plugin 1.1.3 - Cross-Site Scripting / Cross-Site Request Forgery

Navicat for Oracle 12.1.15 - "Password" Denial of Service (PoC)

Free IP Switcher 3.1 - 'Computer Name' Denial of Service (PoC)

AirMore 1.6.1 - Denial of Service (PoC)

15.2.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Linux Kernel CVE-2018-5391 Remote Denial of Service Vulnerability
2019-02-15
http://www.securityfocus.com/bid/105108

Mozilla Firefox and Firefox ESR CVE-2019-5785 Integer Overflow Vulnerability
2019-02-15
http://www.securityfocus.com/bid/107008

Google Chrome Prior to 71.0.3578.80 Multiple Security Vulnerabilities
2019-02-15
http://www.securityfocus.com/bid/106084

SSL/TLS Protocol CVE-2016-2183 Information Disclosure Vulnerability
2019-02-14
http://www.securityfocus.com/bid/92630

Exploint

ApowerManager 3.1.7 - Phone Manager Remote Denial of Service (DoS)

LayerBB 1.1.2 - Cross-Site Request Forgery (Add Admin)

MediaMonkey 4.1.23 - '.mp3' URL Denial of Service (PoC)

WordPress Plugin Booking Calendar 8.4.3 - Authenticated SQL Injection

DomainMOD 4.11.01 - 'assets/edit/host.php?whid=5' Cross-Site Scripting

DomainMOD 4.11.01 - 'assets/add/dns.php' Cross-Site Scripting

DomainMOD 4.11.01 - 'category.php CatagoryName, StakeHolder' Cross-Site Scripting

DomainMOD 4.11.01 - 'ssl-accounts.php username' Cross-Site Scripting

DomainMOD 4.11.01 - 'ssl-provider-name' Cross-Site Scripting

Core FTP/SFTP Server 1.2 Build 589.42 - 'User domain' Denial of Service (PoC)

exacqVision ESM 5.12.2 - Privilege Escalation

14.2.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

 

Exploint

Android - binder Use-After-Free of VMA via race Between reclaim and munmap

Android - binder Use-After-Free via fdget() Optimization

Ubuntu snapd < 2.37.1 - Local Privilege Escalation

runc< 1.0-rc6 (Docker < 18.09.2) - Host Command Execution

Skyworth GPON HomeGateways and Optical Network Terminals - Stack Overflow

LayerBB 1.1.2 - Cross-Site Scripting

BlogEngine.NET 3.3.6 - Directory Traversal / Remote Code Execution

Jenkins 2.150.2 - Remote Command Execution (Metasploit)

OPNsense < 19.1.1 - Cross-Site Scripting

13.2.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Linux Kernel 'tcp_input.c' Remote Denial of Service Vulnerability
2019-02-13
http://www.securityfocus.com/bid/104976

OpenSSL CVE-2018-0739 Denial of Service Vulnerability
2019-02-13
http://www.securityfocus.com/bid/103518

OpenSSL CVE-2018-0732 Denial of Service Vulnerability
2019-02-13
http://www.securityfocus.com/bid/104442

OpenSSL CVE-2018-0737 Side Channel Attack Information Disclosure Vulnerability
2019-02-13
http://www.securityfocus.com/bid/103766

Apache CXF CVE-2018-8039 TLS Hostname Verification Security Bypass Vulnerability
2019-02-13
http://www.securityfocus.com/bid/106357

SAP Note Assistant XML External Entity Injection Vulnerability
2019-02-13
http://www.securityfocus.com/bid/99027

Adobe Flash Player CVE-2018-15983 DLL Loading Local Privilege Escalation Vulnerability
2019-02-12
http://www.securityfocus.com/bid/106108

Exploint

Android - binder Use-After-Free of VMA via race Between reclaim and munmap

Android - binder Use-After-Free via fdget() Optimization

NetworkSleuth 3.0 - 'Name' Denial of Service (PoC)

Rukovoditel Project Management CRM 2.4.1 - Cross-Site Scripting

Jiofi 4 (JMR 1140 Amtel_JMR1140_R12.07) - Cross-Site Request Forgery (Admin Token Disclosure)

Jiofi 4 (JMR 1140 Amtel_JMR1140_R12.07) - Cross-Site Request Forgery (Password Disclosure)

Jiofi 4 (JMR 1140 Amtel_JMR1140_R12.07) - Reflected Cross-Site Scripting

Ubuntu snapd < 2.37.1 - Local Privilege Escalation

snapd < 2.37 (Ubuntu) - 'dirty_sock' Local Privilege Escalation (2)

snapd < 2.37 (Ubuntu) - 'dirty_sock' Local Privilege Escalation (1)

runc< 1.0-rc6 (Docker < 18.09.2) - Host Command Execution

Skyworth GPON HomeGateways and Optical Network Terminals - Stack Overflow

LayerBB 1.1.2 - Cross-Site Scripting

BlogEngine.NET 3.3.6 - Directory Traversal / Remote Code Execution

Jenkins 2.150.2 - Remote Command Execution (Metasploit)

OPNsense < 19.1.1 - Cross-Site Scripting

12.2.2019

Bugtraq

 

Malware

Downloader.Keapot

Backdoor.Scuoter

Hacktool.Modlishka

Phishing

 

Vulnerebility

SAP Business Client Unspecified Security Vulnerability
2019-02-12
http://www.securityfocus.com/bid/104436

Adobe Acrobat and Reader CVE-2019-7030 Information Disclosure Vulnerability
2019-02-12
http://www.securityfocus.com/bid/106983

Adobe Creative Cloud CVE-2019-7093 DLL Loading Local Privilege Escalation Vulnerability
2019-02-12
http://www.securityfocus.com/bid/106982

Adobe Acrobat and Reader CVE-2019-7089 Information Disclosure Vulnerability
2019-02-12
http://www.securityfocus.com/bid/106981

Adobe Acrobat and Reader APSB19-07 Multiple Unspecified Arbitrary Code Execution Vulnerabilities
2019-02-12
http://www.securityfocus.com/bid/106980

Adobe Acrobat and Reader APSB19-07 Multiple Unspecified Arbitrary Code Execution Vulnerabilities
2019-02-12
http://www.securityfocus.com/bid/106979

Adobe Acrobat and Reader Out-Of-Bounds Write Multiple Arbitrary Code Execution Vulnerabilities
2019-02-12
http://www.securityfocus.com/bid/106978

Adobe Acrobat and Reader APSB19-07 Multiple Arbitrary Code Execution Vulnerabilities
2019-02-12
http://www.securityfocus.com/bid/106977

Adobe Acrobat and Reader APSB19-07 Multiple Arbitrary Code Execution Vulnerabilities
2019-02-12
http://www.securityfocus.com/bid/106975

Adobe Acrobat and Reader APSB19-07 Multiple Remote Privilege Escalation Vulnerabilities
2019-02-12
http://www.securityfocus.com/bid/106974

Adobe Acrobat and Reader APSB19-07 Multiple Information Disclosure Vulnerabilities
2019-02-12
http://www.securityfocus.com/bid/106973

SAP Netweaver ABAP CVE-2019-0265 XML External Entity Injection Vulnerability
2019-02-12
http://www.securityfocus.com/bid/106972

SAP Disclosure Management CVE-2019-0258 Remote Authorization Bypass Vulnerability
2019-02-12
http://www.securityfocus.com/bid/106969

Adobe ColdFusion CVE-2019-7091 Arbitrary Code Execution Vulnerability
2019-02-12
http://www.securityfocus.com/bid/106968

Adobe ColdFusion CVE-2019-7092 Unspecified Cross Site Scripting Vulnerability
2019-02-12
http://www.securityfocus.com/bid/106965

Multiple Siemens SIPROTEC Products ICSA-16-140-02 Information Disclosure Vulnerabilities
2019-02-11
http://www.securityfocus.com/bid/90773

Exploint

OPNsense < 19.1.1 - Cross-Site Scripting

Jenkins 2.150.2 - Remote Command Execution (Metasploit)

LayerBB 1.1.2 - Cross-Site Scripting

runc< 1.0-rc6 (Docker < 18.09.2) - Host Command Execution

Skyworth GPON HomeGateways and Optical Network Terminals - Stack Overflow

11.2.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Siemens EN100 Ethernet Communication Module Multiple Denial of Service Vulnerabilities
2019-02-11
http://www.securityfocus.com/bid/106221

IBM API Connect CVE-2019-4008 Information Disclosure Vulnerability
2019-02-11
http://www.securityfocus.com/bid/106961

SSL/TLS Protocol CVE-2016-2183 Information Disclosure Vulnerability
2019-02-08
http://www.securityfocus.com/bid/92630

Exploint

Smoothwall Express 3.1-SP4 - Cross-Site Scripting

River Past Cam Do 3.7.6 - Local Buffer Overflow (SEH)

IP-Tools 2.5 - Local Buffer Overflow (SEH) (Egghunter)

VA MAX 8.3.4 - Authenticated Remote Code Execution

MyBB Bans List 1.0 - Cross-Site Scripting

River Past Video Cleaner 7.6.3 - Local Buffer Overflow (SEH)

Avast Anti-Virus < 19.1.2360 - Local Credentials Disclosure

IPFire 2.21 - Cross-Site Scripting

NordVPN 6.19.6 - Denial of Service (PoC)

Indusoft Web Studio 8.1 SP2 - Remote Code Execution

Evince - CBT File Command Injection (Metasploit)

NUUO NVRmini - upgrade_handle.php Remote Command Execution (Metasploit)

Adobe Flash Player - DeleteRangeTimelineOperation Type Confusion (Metasploit)

FutureDj Pro 1.7.2.0 - Denial of Service

AirDroid 4.2.1.6 - Denial of Service

Coship Wireless Router 4.0.0.x/5.0.0.x - WiFi Password Reset

8.2.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

SSL/TLS Protocol CVE-2016-2183 Information Disclosure Vulnerability
2019-02-08
http://www.securityfocus.com/bid/92630

Google Android Multiple Kernel Components Multiple Information Disclosure Vulnerabilites
2019-02-08
http://www.securityfocus.com/bid/93326

Google Android Multiple Qualcomm Components Multiple Security Vulnerabilities
2019-02-08
http://www.securityfocus.com/bid/102974

Cisco Meeting Server CVE-2019-1678 Denial of Service Vulnerability
2019-02-08
http://www.securityfocus.com/bid/106943

Linux Kernel CVE-2018-1087 Local Privilege Escalation Vulnerability
2019-02-08
http://www.securityfocus.com/bid/104127

Apache Subversion CVE-2018-11803 Denial of Service Vulnerability
2019-02-08
http://www.securityfocus.com/bid/106770

Schneider Electric Zelio Soft 2 CVE-2018-7817 Remote Code Execution Vulnerability
2019-02-08
http://www.securityfocus.com/bid/106481

Exploint

 

7.2.2019

Bugtraq

 

Malware

Ransom.Gogalocker

Phishing

 

Vulnerebility

Jenkins Multiple Input Validation Security Vulnerabilities
2019-02-07
http://www.securityfocus.com/bid/106774

Siemens S7-1500 CPU Multiple Denial of Service Vulnerabilities
2019-02-06
http://www.securityfocus.com/bid/106788

Microsoft Exchange Server Remote Privilege Escalation Vulnerability
2019-02-06
http://www.securityfocus.com/bid/106725

OpenSSH CVE-2019-6111 Arbitrary File Overwrite Vulnerability
2019-02-06
http://www.securityfocus.com/bid/106741

Cisco Meeting Server CVE-2019-1676 Denial of Service Vulnerability
2019-02-06
http://www.securityfocus.com/bid/106909

Cisco Web Security Appliance CVE-2019-1672 Remote Security Bypass Vulnerability
2019-02-06
http://www.securityfocus.com/bid/106904

Exploint

 

6.2.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Siemens S7-1500 CPU Multiple Denial of Service Vulnerabilities
2019-02-06
http://www.securityfocus.com/bid/106788

Microsoft Exchange Server Remote Privilege Escalation Vulnerability
2019-02-06
http://www.securityfocus.com/bid/106725

OpenSSH CVE-2019-6111 Arbitrary File Overwrite Vulnerability
2019-02-06
http://www.securityfocus.com/bid/106741

Mozilla Firefox and Firefox ESR Multiple Security Vulnerabilities
2019-02-05
http://www.securityfocus.com/bid/106168

Exploint

Skia - Incorrect Convexity Assumptions Leading to Buffer Overflows

River Past Audio Converter 7.7.16 - Buffer Overflow (SEH)

osCommerce 2.3.4.1 - 'reviews_id' SQL Injection

osCommerce 2.3.4.1 - 'products_id' SQL Injection

osCommerce 2.3.4.1 - 'currency' SQL Injection

5.2.2019

Bugtraq

 

Malware

Linux.Speakup

Phishing

 

Vulnerebility

OpenSSL CVE-2018-0737 Side Channel Attack Information Disclosure Vulnerability
2019-02-05
http://www.securityfocus.com/bid/103766

OpenSSH CVE-2018-15473 User Enumeration Vulnerability
2019-02-05
http://www.securityfocus.com/bid/105140

Poppler 'XRef.cc' Heap Buffer Overflow Vulnerability
2019-02-02
http://www.securityfocus.com/bid/106829

SSL/TLS Protocol CVE-2016-2183 Information Disclosure Vulnerability
2019-02-01
http://www.securityfocus.com/bid/92630

Exploint

OpenMRS Platform < 2.24.0 - Insecure Object Deserialization

Zyxel VMG3312-B10B DSL-491HNU-B1B v2 Modem - Cross-Site Request Forgery

devolo dLAN 550 duo+ Starter Kit - Cross-Site Request Forgery

River Past Audio Converter 7.7.16 - Denial of Service (PoC)

Device Monitoring Studio 8.10.00.8925 - Denial of Service (PoC)

BEWARD N100 H.264 VGA IP Camera M2.1.6 - Arbitrary File Disclosure

BEWARD N100 H.264 VGA IP Camera M2.1.6 - Remote Code Execution

BEWARD N100 H.264 VGA IP Camera M2.1.6 - Cross-Site Request Forgery (Add Admin)

BEWARD N100 H.264 VGA IP Camera M2.1.6 - RTSP Stream Disclosure

4.2.2019

Bugtraq

 

Malware

 

Phishing

Amazon Order

4th February 2019

Amazon Order Confirmation
Pending

Vulnerebility

 

Exploint

Nessus 8.2.1 - Cross-Site Scripting

pfSense 2.4.4-p1 - Cross-Site Scripting

TaskInfo 8.2.0.280 - Denial of Service (PoC)

SpotAuditor 3.6.7 - Denial of Service (PoC)

LibSSH 0.7.6 / 0.8.4 - Unauthorized Access

MyVideoConverter Pro 3.14 - Denial of Service

River Past Ringtone Converter 2.7.6.1601 - Denial of Service (PoC)

SuiteCRM 7.10.7 - 'record' SQL Injection

SuiteCRM 7.10.7 - 'parentTab' SQL Injection

ResourceSpace 8.6 - 'watched_searches.php' SQL Injection

3.2.2019

Bugtraq

 

Malware

 

Phishing

Tesco

3rd February 2019

Important message for Steve

Amazon Order

3rd February 2019

Amazon Order Confirmation
Pending

AT&T

1st February 2019

Update!!!

Amazon Order

1st February 2019

Amazon Order Confirmation
Pending

Review Update

30th January 2019

AOL Mail (New Terms)

Chase

30th January 2019

ACH NOTICE OF CHANGE [SECURE]

Vulnerebility

SSL/TLS Protocol CVE-2016-2183 Information Disclosure Vulnerability
2019-02-01
http://www.securityfocus.com/bid/92630

Identicard Premisys Multiple Security Vulnerabilities
2019-02-01
http://www.securityfocus.com/bid/106552

Mozilla Firefox and Firefox ESR Multiple Security Vulnerabilities
2019-02-01
http://www.securityfocus.com/bid/101059

Expat XML Parsing Remote Denial of Service Vulnerability
2019-02-01
http://www.securityfocus.com/bid/37203

Exploint

SureMDM < 2018-11 Patch - Local / Remote File Inclusion

Remote Process Explorer 1.0.0.16 - Denial of Service SEH Overwrite (PoC)

1.2.2019

Bugtraq

 

Malware

Trojan.Formbook

Backdoor.Chafpe

Backdoor.Chafanty

Backdoor.Chafty

Backdoor.Chafpy

Phishing

 

Vulnerebility

Identicard Premisys Multiple Security Vulnerabilities
2019-02-01
http://www.securityfocus.com/bid/106552

Mozilla Firefox and Firefox ESR Multiple Security Vulnerabilities
2019-02-01
http://www.securityfocus.com/bid/101059

Expat XML Parsing Remote Denial of Service Vulnerability
2019-02-01
http://www.securityfocus.com/bid/37203

Solaris DTMail Mail Environment Variable Buffer Overflow Vulnerability
2019-01-31
http://www.securityfocus.com/bid/3081

Exploint

PassFab Excel Password Recovery 8.3.1 - SEH Local Exploit

31.1.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Google Chrome Prior to 72.0.3626.81 Multiple Security Vulnerabilities
2019-01-31
http://www.securityfocus.com/bid/106767

Oracle VM VirtualBox Mulltiple Local Security Vulnerabilities
2019-01-31
http://www.securityfocus.com/bid/106568

GuppY Error.PHP HTML Injection Vulnerability
2019-01-31
http://www.securityfocus.com/bid/14753

Check Point Firewall-1 RDP Header Firewall Bypassing Vulnerability
2019-01-31
http://www.securityfocus.com/bid/2952

Adobe Flash Player APSB17-17 Multiple Memory Corruption Vulnerabilities
2019-01-31
http://www.securityfocus.com/bid/99025

askSam Web Publisher Cross Site Scripting Vulnerability
2019-01-31
http://www.securityfocus.com/bid/4670

Adobe Flash Player APSB17-15 Multiple Memory Corruption Vulnerabilities
2019-01-31
http://www.securityfocus.com/bid/98349

Solaris xlock Heap Overflow Vulnerability
2019-01-31
http://www.securityfocus.com/bid/3160

Google Chrome Prior to 61.0.3163.79 Multiple Security Vulnerabilities
2019-01-31
http://www.securityfocus.com/bid/100610

WebKit Multiple Memory Corruption Vulnerabilities
2019-01-30
http://www.securityfocus.com/bid/106696

WebKit Multiple Memory Corruption Vulnerabilities
2019-01-30
http://www.securityfocus.com/bid/106699

WebKit Multiple Security Vulnerabilities
2019-01-30
http://www.securityfocus.com/bid/106691

SQLite 'FTS3' extension Remote Code Execution Vulnerability
2019-01-30
http://www.securityfocus.com/bid/106698

Exploint

macOS < 10.14.3 / iOS < 12.1.3 - Kernel Heap Overflow in PF_KEY due to Lack of Bounds Checking when Retrieving Statistics

macOS < 10.14.3 / iOS < 12.1.3 XNU - 'vm_map_copy' Optimization which Requires Atomicity isn't Atomic

macOS < 10.14.3 / iOS < 12.1.3 - Sandbox Escapes due to Type Confusions and Memory Safety Issues in iohideventsystem

macOS < 10.14.3 / iOS < 12.1.3 - Arbitrary mach Port Name Deallocation in XPC Services due to Invalid mach Message Parsing in _xpc_serializer_unpack

macOS XNU - Copy-on-Write Behaviour Bypass via Partial-Page Truncation of File

LanHelper 1.74 - Denial of Service (PoC)

FlexHEX 2.46 - Denial of Service SEH Overwrite (PoC)

ASPRunner Professional 6.0.766 - Denial of Service (PoC)

AMAC Address Change 5.4 - Denial of Service (PoC)

Advanced Host Monitor 11.90 Beta - 'Registration number' Denial of Service (PoC)

UltraISO 9.7.1.3519 - 'Output FileName' Local Buffer Overflow (SEH)

Anyburn 4.3 - 'Convert image to file format' Denial of Service

R 3.5.0 - Local Buffer Overflow (SEH)

Necrosoft DIG 0.4 - Denial of Service SEH Overwrite (PoC)

IP-Tools 2.50 - Denial of Service SEH Overwrite (PoC)

iOS/macOS 10.13.6 - 'if_ports_used_update_wakeuuid()' 16-byte Uninitialized Kernel Stack Disclosure

Advanced File Manager 3.4.1 - Denial of Service (PoC)

10-Strike Network Inventory Explorer 8.54 - Local Buffer Overflow (SEH) (DEP Bypass)

Rukovoditel Project Management CRM 2.4.1 - 'lists_id' SQL Injection

30.1.2019

Bugtraq

 

Malware

Trojan.Vcrodat

Phishing

 

Vulnerebility

WebKit Multiple Memory Corruption Vulnerabilities
2019-01-30
http://www.securityfocus.com/bid/106696

WebKit Multiple Memory Corruption Vulnerabilities
2019-01-30
http://www.securityfocus.com/bid/106699

WebKit Multiple Security Vulnerabilities
2019-01-30
http://www.securityfocus.com/bid/106691

SQLite 'FTS3' extension Remote Code Execution Vulnerability
2019-01-30
http://www.securityfocus.com/bid/106698

SQLite CVE-2018-20346 Remote Integer Overflow Vulnerability
2019-01-30
http://www.securityfocus.com/bid/106323

Apple iOS and macOS Multiple Security Vulnerabilities
2019-01-30
http://www.securityfocus.com/bid/106694

WPA2 Key Reinstallation Multiple Security Weaknesses
2019-01-30
http://www.securityfocus.com/bid/101274

libical Multiple Heap Overflow Vulnerabilities
2019-01-30
http://www.securityfocus.com/bid/91459

Exploint

HTML5 Video Player 1.2.5 - Local Buffer Overflow - Non SEH

MiniUPnPd 2.1 - Out-of-Bounds Read

PDF Signer 3.0 - SSTI to RCE via CSRF Cookie

29.1.2019

Bugtraq

 

Malware

Backdoor.Kirihop

Ransom.Anatova

Phishing

 

Vulnerebility

 

Exploint

 

28.1.2019

Bugtraq

 

Malware

Ransom.Pots

Phishing

 

Vulnerebility

RETIRED: Multiple Oracle Products CVE-2018-9206 Remote Security Vulnerability
2019-01-29
http://www.securityfocus.com/bid/106629

jQuery-File-Upload CVE-2018-9206 Arbitrary File Upload Vulnerability
2019-01-29
http://www.securityfocus.com/bid/105679

Microsoft Exchange Server Remote Privilege Escalation Vulnerability
2019-01-29
http://www.securityfocus.com/bid/106725

Adobe Acrobat and Reader CVE-2018-19723 Information Disclosure Vulnerability
2019-01-28
http://www.securityfocus.com/bid/106751

Symantec Ghost Solution Suite CVE-2018-18364 DLL Loading Arbitrary Code Execution Vulnerability
2019-01-28
http://www.securityfocus.com/bid/106684

Exploint

ResourceSpace 8.6 - 'collection_edit.php' SQL Injection

MyBB IP History Logs Plugin 1.0.2 - Cross-Site Scripting

Smart VPN 1.1.3.0 - Denial of Service (PoC)

Mess Management System 1.0 - SQL Injection

Teameyo Project Management System 1.0 - SQL Injection

Faleemi Desktop Software 1.8 - Local Buffer Overflow (SEH)(DEP Bypass)

Care2x 2.7 (HIS) Hospital Information System - Multiple SQL Injection

BEWARD Intercom 2.3.1 - Credentials Disclosure

Newsbull Haber Script 1.0.0 - 'search' SQL Injection

R 3.4.4 XP SP3 - Buffer Overflow (Non SEH)

Cisco Firepower Management Center 6.2.2.2 / 6.2.3 - Cross-Site Scripting

Cisco RV300 / RV320 - Information Disclosure

Sricam gSOAP 2.8 - Denial of Service

CMSsite 1.0 - 'search' SQL Injection

CMSsite 1.0 - 'cat_id' SQL Injection

Easy Video to iPod Converter 1.6.20 - Buffer Overflow (SEH)

LogonBox Limited / Hypersocket Nervepoint Access Manager - Unauthenticated Insecure Direct Object Reference

AirTies Air5341 Modem 1.0.0.12 - Cross-Site Request Forgery

WordPress Plugin Ad Manager WD 1.0.11 - Arbitrary File Download

Rundeck Community Edition < 3.0.13 - Persistent Cross-Site Scripting

CloudMe Sync 1.11.2 Buffer Overflow - WoW64 (DEP Bypass)

MySQL User-Defined (Linux) (x32/x86_64) - 'sys_exec' Local Privilege Escalation

27.1.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

OpenSSH CVE-2018-20685 Access Bypass Vulnerability
2019-01-25
http://www.securityfocus.com/bid/106531

Cisco SocialMiner CVE-2019-1668 Chat Feed Multiple Cross Site Scripting Vulnerabilities
2019-01-25
http://www.securityfocus.com/bid/106720

Exploint

 

25.1.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

OpenSSH CVE-2018-20685 Access Bypass Vulnerability
2019-01-25
http://www.securityfocus.com/bid/106531

Multiple CPU Hardware CVE-2017-5753 Information Disclosure Vulnerability
2019-01-24
http://www.securityfocus.com/bid/102371

Exploint

Cisco RV320 Dual Gigabit WAN VPN Router 1.4.2.15 - Command Injection

iOS/macOS - 'task_swap_mach_voucher()' Use-After-Free

Wordpress Plugin Wisechat 2.6.3 - Reverse Tabnabbing

Lua 5.3.5 - 'debug.upvaluejoin' Use After Free

GreenCMS 2.x - Arbitrary File Download

GreenCMS 2.x - SQL Injection

24.1.2019

Bugtraq

 

Malware

Backdoor.Exemyr

Phishing

 

Vulnerebility

Multiple CPU Hardware CVE-2017-5753 Information Disclosure Vulnerability
2019-01-24
http://www.securityfocus.com/bid/102371

Multiple Intel Processors Side Channel Attack Multiple Information Disclosure Vulnerabilities
2019-01-24
http://www.securityfocus.com/bid/105080

Exploint

Microsoft Remote Desktop 10.2.4(134) - Denial of Service (PoC)

Zyxel NBG-418N v2 Modem 1.00(AAXM.6)C0 - Cross-Site Request Forgery

Ghostscript 9.26 - Pseudo-Operator Remote Code Execution

AddressSanitizer (ASan) - SUID Executable Privilege Escalation (Metasploit)

ImpressCMS 1.3.11 - 'bid' SQL Injection

Splunk Enterprise 7.2.3 - Authenticated Custom App RCE

SirsiDynix e-Library 3.5.x - Cross-Site Scripting

SimplePress CMS 1.0.7 - SQL Injection

Joomla! Component JHotelReservation 6.0.7 - SQL Injection

Joomla! Component J-CruisePortal 6.0.4 - SQL Injection

23.1.2019

Bugtraq

 

Malware

Trojan.Cartbat

Phishing

 

Vulnerebility

Tridium Niagara Directory Traversal and Authentication-Bypass Vulnerabilities
2019-01-23
http://www.securityfocus.com/bid/105101

Oracle Java SE CVE-2019-2426 Information Disclosure Vulnerability
2019-01-23
http://www.securityfocus.com/bid/106590

Oracle Java SE CVE-2019-2422 Information Disclosure Vulnerability
2019-01-23
http://www.securityfocus.com/bid/106596

Microsoft Internet Explorer CVE-2018-8373 Remote Memory Corruption Vulnerability
2019-01-22
http://www.securityfocus.com/bid/105037

Adobe Flash Player CVE-2018-15982 Use After Free Remote Code Execution Vulnerability
2019-01-22
http://www.securityfocus.com/bid/106116

Microsoft Internet Explorer VBScript Engine CVE-2018-8174 Arbitrary Code Execution Vulnerability
2019-01-22
http://www.securityfocus.com/bid/103998

Exploint

Microsoft Windows CONTACT - HTML Injection / Remote Code Execution

Nagios XI 5.5.6 - Remote Code Execution / Privilege Escalation

Joomla! Component J-BusinessDirectory 4.9.7 - 'type' SQL Injection

Joomla! Component VMap 1.9.6 - SQL Injection

Joomla! Component vRestaurant 1.9.4 - SQL Injection

Joomla! Component vReview 1.9.11 - SQL Injection

Joomla! Component vAccount 2.0.2 - 'vid' SQL Injection

Joomla! Component vWishlist 1.0.1 - SQL Injection

Joomla! Component vBizz 1.0.7 - Remote Code Execution

Joomla! Component vBizz 1.0.7 - SQL Injection

22.1.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Microsoft Internet Explorer CVE-2018-8373 Remote Memory Corruption Vulnerability
2019-01-22
http://www.securityfocus.com/bid/105037

Adobe Flash Player CVE-2018-15982 Use After Free Remote Code Execution Vulnerability
2019-01-22
http://www.securityfocus.com/bid/106116

Microsoft Internet Explorer VBScript Engine CVE-2018-8174 Arbitrary Code Execution Vulnerability
2019-01-22
http://www.securityfocus.com/bid/103998

Adobe Flash Player CVE-2018-4878 Use After Free Remote Code Execution Vulnerability
2019-01-22
http://www.securityfocus.com/bid/102893

Drupal Core Arbitrary PHP Code Execution Vulnerability
2019-01-21
http://www.securityfocus.com/bid/106647

Mozilla Firefox and Firefox ESR Multiple Security Vulnerabilities
2019-01-21
http://www.securityfocus.com/bid/106168

Exploint

Microsoft Windows VCF or Contact' File - URL Manipulation-Spoof Arbitrary Code Execution

Joomla! Component Easy Shop 1.2.3 - Local File Inclusion

CloudMe Sync 1.11.2 - Buffer Overflow + Egghunt

Adianti Framework 5.5.0 - SQL Injection

21.1.2019

Bugtraq

 

Malware

 

Phishing

阿里巴巴国际站

21st January 2019

Verification Code From Alibaba
Group

Mr.Desmond Umeh

20th January 2019

Western Union Cotonou-Benin
Republic

Apple

19th January 2019

RE : Your account Apple ID has
been locked. Please update
information your Apple account
Case ID

Vulnerebility

Drupal Core Arbitrary PHP Code Execution Vulnerability
2019-01-21
http://www.securityfocus.com/bid/106647

Mozilla Firefox and Firefox ESR Multiple Security Vulnerabilities
2019-01-21
http://www.securityfocus.com/bid/106168

Foreman CVE-2018-14664 Multiple HTML Injection Vulnerabilities
2019-01-19
http://www.securityfocus.com/bid/106553

NTP CVE-2018-12327 Stack Buffer Overflow Vulnerability
2019-01-18
http://www.securityfocus.com/bid/104517

Exploint

Linux Kernel 4.13 - 'compat_get_timex()' Leak Kernel Pointer

Kepler Wallpaper Script 1.1 - SQL Injection

Echo Mirage 3.1 - Buffer Overflow (PoC)

GattLib 0.2 - Stack Buffer Overflow

PHP Uber-style GeoTracking 1.1 - SQL Injection

PHP Dashboards NEW 5.8 - Local File Inclusion

PHP Dashboards NEW 5.8 - 'dashID' SQL Injection

MoneyFlux 1.0 - 'id' SQL Injection

Reservic 1.0 - 'id' SQL Injection

Coman 1.0 - 'id' SQL Injection

20.1.2019

Bugtraq

 

Malware

Ransom.Mongolock

Bloodhound.RTF.15

Bloodhound.RTF.16

Bloodhound.RTF.17

Bloodhound.RTF.18

Phishing

Apple

19th January 2019

RE : Your account Apple ID has
been locked. Please update
information your Apple account
Case ID

News

19th January 2019

Reclusive Millionaire Warns:
"Get Out of Cash Now"

Vulnerebility

 

Exploint

Microsoft Edge Chakra - 'JsBuiltInEngineInterface
ExtensionObject::InjectJsBuiltIn
LibraryCode' Use-After-Free

Microsoft Edge Chakra - 'InitClass' Type Confusion

Microsoft Edge Chakra - 'NewScObjectNoCtor' or 'InitProto' Type Confusion

Microsoft Edge Chakra - 'InlineArrayPush' Type Confusion

Pydio / AjaXplorer < 5.0.4 - Unauthenticated Arbitrary File Upload

Webmin 1.900 - Remote Command Execution (Metasploit)

Joomla! Core 3.9.1 - Persistent Cross-Site Scripting in Global Configuration Textfilter Settings

FastTube 1.0.1.0 - Denial of Service (PoC)

VPN Browser+ 1.1.0.0 - Denial of Service (PoC)

7 Tik 1.0.1.0 - Denial of Service (PoC)

Eco Search 1.0.2.0 - Denial of Service (PoC)

One Search 1.1.0.0 - Denial of Service (PoC)

Watchr 1.1.0.0 - Denial of Service (PoC)

SCP Client - Multiple Vulnerabilities (SSHtranger Things)

phpTransformer 2016.9 - Directory Traversal

phpTransformer 2016.9 - SQL Injection

SeoToaster Ecommerce / CRM / CMS 3.0.0 - Local File Inclusion

18.1.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

systemd-journald CVE-2018-16865 Stack Buffer Overflow Vulnerability
2019-01-18
http://www.securityfocus.com/bid/106525

Ghostscript CVE-2018-19134 Remote Code Execution Vulnerability
2019-01-18
http://www.securityfocus.com/bid/106278

QEMU CVE-2018-16867 Directory Traversal Vulnerability
2019-01-18
http://www.securityfocus.com/bid/106195

systemd-journald CVE-2018-16864 Stack-Based Buffer Overflow Vulnerability
2019-01-18
http://www.securityfocus.com/bid/106523

systemd CVE-2018-15688 Heap Buffer Overflow Vulnerability
2019-01-18
http://www.securityfocus.com/bid/105745

Ghostscript CVE-2018-19409 Security Bypass Vulnerability
2019-01-18
http://www.securityfocus.com/bid/105990

Mozilla Firefox and Firefox ESR Multiple Security Vulnerabilities
2019-01-18
http://www.securityfocus.com/bid/106168

NTP CVE-2018-12327 Stack Buffer Overflow Vulnerability
2019-01-17
http://www.securityfocus.com/bid/104517

OpenSSL CVE-2018-5407 Side Channel Attack Information Disclosure Vulnerability
2019-01-17
http://www.securityfocus.com/bid/105897

OpenSSL CVE-2018-0734 Side Channel Attack Information Disclosure Vulnerability
2019-01-17
http://www.securityfocus.com/bid/105758

Poppler CVE-2017-14517 Denial of Service Vulnerability
2019-01-17
http://www.securityfocus.com/bid/105050

Oracle MySQL Server Multiple Security Vulnerabilities
2019-01-17
http://www.securityfocus.com/bid/105600

Exploint

 

17.1.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

NTP CVE-2018-12327 Stack Buffer Overflow Vulnerability
2019-01-17
http://www.securityfocus.com/bid/104517

OpenSSL CVE-2018-5407 Side Channel Attack Information Disclosure Vulnerability
2019-01-17
http://www.securityfocus.com/bid/105897

OpenSSL CVE-2018-0734 Side Channel Attack Information Disclosure Vulnerability
2019-01-17
http://www.securityfocus.com/bid/105758

Poppler CVE-2017-14517 Denial of Service Vulnerability
2019-01-17
http://www.securityfocus.com/bid/105050

Oracle MySQL Server Multiple Security Vulnerabilities
2019-01-17
http://www.securityfocus.com/bid/105600

Oracle MySQL Server Multiple Security Vulnerabilities
2019-01-17
http://www.securityfocus.com/bid/105610

Oracle MySQL Server Multiple Security Vulnerabilities
2019-01-17
http://www.securityfocus.com/bid/104766

Memcached Multiple Integer Overflow Vulnerabilities
2019-01-17
http://www.securityfocus.com/bid/94083

OpenSSL CVE-2018-0739 Denial of Service Vulnerability
2019-01-17
http://www.securityfocus.com/bid/103518

Ghostscript 'shading_param' Remote Code Execution Vulnerability
2019-01-17
http://www.securityfocus.com/bid/105178

Wireshark Multiple Denial of Service Vulnerabilities
2019-01-17
http://www.securityfocus.com/bid/106051

Apache HTTP Server CVE-2018-11763 Denial of Service Vulnerability
2019-01-17
http://www.securityfocus.com/bid/105414

Perl CVE-2018-6913 Heap Buffer Overflow Vulnerability
2019-01-17
http://www.securityfocus.com/bid/103953

libgcrypt CVE-2017-0379 Information Disclosure Vulnerability
2019-01-16
http://www.securityfocus.com/bid/100503

FasterXML Jackson-databind CVE-2017-15095 Incomplete Fix Remote Code Execution Vulnerability
2019-01-16
http://www.securityfocus.com/bid/103880

Apache Struts CVE-2016-1181 Remote Code Execution Vulnerability
2019-01-16
http://www.securityfocus.com/bid/91068

Libssh CVE-2018-10933 Authentication Bypass Vulnerability
2019-01-16
http://www.securityfocus.com/bid/105677

Apache Struts CVE-2018-11776 Remote Code Execution Vulnerability
2019-01-16
http://www.securityfocus.com/bid/105125

Linux Kernel 'tcp_input.c' Remote Denial of Service Vulnerability
2019-01-16
http://www.securityfocus.com/bid/104976

Apache Groovy CVE-2016-6814 Remote Code Execution Vulnerability
2019-01-16
http://www.securityfocus.com/bid/95429

Exploint

Check Point ZoneAlarm 8.8.1.110 - Local Privilege Escalation

Microsoft Windows CONTACT - Remote Code Execution

Oracle Reports Developer Component 12.2.1.3 - Cross-site Scripting

16.1.2019

Bugtraq

 

Malware

Linux.Ekcorminer

Phishing

PayPal

15th January 2019

RE: Doc ID
PP0924-15012019-00429 - Votre
compte est temporairement
limit� [ IP CONFLICT ]

Vulnerebility

libgcrypt CVE-2017-0379 Information Disclosure Vulnerability
2019-01-16
http://www.securityfocus.com/bid/100503

FasterXML Jackson-databind CVE-2017-15095 Incomplete Fix Remote Code Execution Vulnerability
2019-01-16
http://www.securityfocus.com/bid/103880

Apache Struts CVE-2016-1181 Remote Code Execution Vulnerability
2019-01-16
http://www.securityfocus.com/bid/91068

Libssh CVE-2018-10933 Authentication Bypass Vulnerability
2019-01-16
http://www.securityfocus.com/bid/105677

Apache Struts CVE-2018-11776 Remote Code Execution Vulnerability
2019-01-16
http://www.securityfocus.com/bid/105125

Linux Kernel 'tcp_input.c' Remote Denial of Service Vulnerability
2019-01-16
http://www.securityfocus.com/bid/104976

Apache Groovy CVE-2016-6814 Remote Code Execution Vulnerability
2019-01-16
http://www.securityfocus.com/bid/95429

JasPer Multiple Assertion Failures Denial of Service Vulnerabilities
2019-01-16
http://www.securityfocus.com/bid/94371

Apache HTTP Server CVE-2017-9798 Information Disclosure Vulnerability
2019-01-16
http://www.securityfocus.com/bid/100872

Pivotal Spring Framework CVE-2018-1275 Incomplete Fix Remote Code Execution Vulnerability
2019-01-16
http://www.securityfocus.com/bid/103771

Multiple CPU Hardware CVE-2018-3639 Information Disclosure Vulnerability
2019-01-16
http://www.securityfocus.com/bid/104232

JasPer 'jpc_dec.c' Denial of Service Vulnerability
2019-01-16
http://www.securityfocus.com/bid/100861

Multiple Oracle Products CVE-2016-0635 Remote Security Vulnerability
2019-01-16
http://www.securityfocus.com/bid/91869

Oracle Solaris Cpujan2019 Multiple Local Security Vulnerabilities
2019-01-16
http://www.securityfocus.com/bid/106575

Apache Log4j CVE-2017-5645 Remote Code Execution Vulnerability
2019-01-16
http://www.securityfocus.com/bid/97702

Oracle Outside In Technology Multiple Security Vulnerabilities
2019-01-16
http://www.securityfocus.com/bid/105603

FreeImage CVE-2016-5684 Remote Code Execution Vulnerability
2019-01-16
http://www.securityfocus.com/bid/93287

JasPer 'jpc_t2cod.c' Remote Heap Buffer Overflow Vulnerability
2019-01-16
http://www.securityfocus.com/bid/94925

cURL CVE-2018-1000300 Heap Buffer Overflow Vulnerability
2019-01-16
http://www.securityfocus.com/bid/104207

Novell NetIQ Sentinel CVE-2016-1000031 Remote Code Execution Vulnerability
2019-01-16
http://www.securityfocus.com/bid/93604

Apache ActiveMQ CVE-2018-11775 Man in the Middle Security Bypass Vulnerability
2019-01-16
http://www.securityfocus.com/bid/105335

OpenSSL CVE-2018-0734 Side Channel Attack Information Disclosure Vulnerability
2019-01-16
http://www.securityfocus.com/bid/105758

OWASP AntiSamy CVE-2017-14735 Cross Site Scripting Vulnerability
2019-01-16
http://www.securityfocus.com/bid/105656

JasPer Assertion Failure Multiple Denial of Service Vulnerabilities
2019-01-16
http://www.securityfocus.com/bid/94377

Oracle Enterprise Manager Ops Center CVE-2016-4000 Remote Security Vulnerability
2019-01-16
http://www.securityfocus.com/bid/105647

Apache Batik CVE-2018-8013 Information Disclosure Vulnerability
2019-01-16
http://www.securityfocus.com/bid/104252

FasterXML Jackson-databind CVE-2018-12023 Remote Code Execution Vulnerability
2019-01-16
http://www.securityfocus.com/bid/105659

Apache HTTP Server CVE-2018-11763 Denial of Service Vulnerability
2019-01-16
http://www.securityfocus.com/bid/105414

Apache Tomcat CVE-2018-11784 Open Redirection Vulnerability
2019-01-16
http://www.securityfocus.com/bid/105524

Exploint

Microsoft Windows 10 - XmlDocument Insecure Sharing Privilege Escalation

Microsoft Windows 10 - 'RestrictedErrorInfo' Unmarshal Section Handle Use-After-Free

blueman - set_dhcp_handler D-Bus Privilege Escalation (Metasploit)

WebKit JSC JIT - GetIndexedPropertyStorage Use-After-Free

Blueimp's jQuery File Upload 9.22.0 - Arbitrary File Upload Exploit

Google Chrome V8 JavaScript Engine 71.0.3578.98 - Out-of-Memory in Invalid Array Length

Coship Wireless Router 4.0.0.48 / 4.0.0.40 / 5.0.0.54 / 5.0.0.55 / 10.0.0.49 - Unauthenticated Admin Password Reset

GL-AR300M-Lite 2.27 - Authenticated Command Injection / Arbitrary File Download / Directory Traversal

NTPsec 1.1.2 - 'config' Authenticated Out-of-Bounds Write Denial of Service (PoC)

NTPsec 1.1.2 - 'ntp_control' Authenticated NULL Pointer Dereference (PoC)

NTPsec 1.1.2 - 'ntp_control' Out-of-Bounds Read (PoC)

NTPsec 1.1.2 - 'ctl_getitem' Out-of-Bounds Read (PoC)

ShoreTel / Mitel Connect ONSITE 19.49.5200.0 - Remote Code Execution

doorGets CMS 7.0 - Arbitrary File Download

Roxy Fileman 1.4.5 - Arbitrary File Download

FortiGate FortiOS < 6.0.3 - LDAP Credential Disclosure

Roxy Fileman 1.4.5 - Arbitrary File Download

doorGets CMS 7.0 - Arbitrary File Download

Spotify 1.0.96.181 - 'Proxy configuration' Denial of Service (PoC)

15.1.2019

Bugtraq

 

Malware

Bloodhound.RTF.13

Bloodhound.RTF.14

Phishing

 

Vulnerebility

Foreman CVE-2018-14664 Multiple HTML Injection Vulnerabilities
2019-10-10
http://www.securityfocus.com/bid/106553

GNU Binutils CVE-2018-20712 Heap Buffer Overflow Vulnerability
2019-01-14
http://www.securityfocus.com/bid/106563

Identicard Premisys Multiple Security Vulnerabilities
2019-01-14
http://www.securityfocus.com/bid/106552

Exploint

Microsoft Windows VCF - Remote Code Execution

Microsoft Windows 10 - COM Desktop Broker Privilege Escalation

Microsoft Windows 10 - Browser Broker Cross Session Privilege Escalation

Microsoft Windows 10 - DSSVC MoveFileInheritSecurity Privilege Escalation

Microsoft Windows 10 - DSSVC CanonicalAndValidateFilePath Security Feature Bypass

Microsoft Windows 10 - DSSVC DSOpenSharedFile Arbitrary File Delete Privilege Escalation

Microsoft Windows 10 - DSSVC DSOpenSharedFile Arbitrary File Open Privilege Escalation

Microsoft Windows 10 - SSPI Network Authentication Session 0 Privilege Escalation

ownDMS 4.7 - SQL Injection

1Password < 7.0 - Denial of Service

AudioCode 400HD - Command Injection

Portier Vision 4.4.4.2 / 4.4.4.6 - SQL Injection

Dokany 1.2.0.1000 - Stack-Based Buffer Overflow Privilege Escalation

Bigcart - Ecommerce Multivendor System 1.0 - SQL Injection

Bigcart - Ecommerce Multivendor System 1.0 - SQL Injection

Job Portal Platform 1.0 - SQL Injection

Real Estate Custom Script 2.0 - SQL Injection

ThinkPHP 5.X - Remote Command Execution

Hucart CMS 5.7.4 - Cross-Site Request Forgery (Add Administrator Account)

HealthNode Hospital Management System 1.0 - SQL Injection

Lenovo R2105 - Cross-Site Request Forgery (Command Execution)

Cleanto 5.0 - SQL Injection

Find a Place CMS Directory 1.5 - SQL Injection

Craigs Classified Ads CMS Theme 1.0.2 - SQL Injection

Hootoo HT-05 - Remote Code Execution (Metasploit)

xorg-x11-server < 1.20.3 - Local Privilege Escalation (Solaris 11 inittab)

Live Call Support Widget 1.5 - Remote Code Execution / SQL Injection

Live Call Support Widget 1.5 - Cross-Site Request Forgery (Add Admin)

Twilio WEB To Fax Machine System Application 1.0 - SQL Injection

Modern POS 1.3 - SQL Injection

Modern POS 1.3 - Arbitrary File Download

Horde Imp - 'imap_open' Remote Command Execution

i-doit CMDB 1.12 - SQL Injection

i-doit CMDB 1.12 - Arbitrary File Download

Across DR-810 ROM-0 - Backup File Disclosure

14.1.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

 

Exploint

Luminance Studio 2.17 - Denial of Service (PoC)

Blob Studio 2.17 - Denial of Service (PoC)

Liquid Studio 2.17 - Denial of Service (PoC)

Pixel Studio 2.17 - Denial of Service (PoC)

Paint Studio 2.17 - Denial of Service (PoC)

Tree Studio 2.17 - Denial of Service (PoC)

Selfie Studio 2.17 - Denial of Service (PoC)

Joomla! Component JoomCRM 1.1.1 - SQL Injection

Joomla! Component JoomProject 1.1.3.2 - Information Disclosure

Code Blocks 17.12 - Local Buffer Overflow (SEH) (Unicode)

Adapt Inventory Management System 1.0 - SQL Injection

11.1.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

systemd-journald CVE-2018-16864 Stack-Based Buffer Overflow Vulnerability
2019-01-11
http://www.securityfocus.com/bid/106523

OpenAFS CVE-2018-16949 Multiple Denial of Service Vulnerabilities
2019-01-11
http://www.securityfocus.com/bid/106375

Yokogawa Vnet/IP Open Communication Driver CVE-2018-16196 Denial of Service Vulnerability
2019-01-11
http://www.securityfocus.com/bid/106442

Omron CX-Protocol CVE-2018-19027 Multiple Arbitrary Code Execution Vulnerabilities
2019-01-10
http://www.securityfocus.com/bid/106524

Emerson DeltaV CVE-2018-19021 Authentication Bypass Vulnerability
2019-01-10
http://www.securityfocus.com/bid/106522

Symantec Reporter CLI CVE-2018-12237 OS Command Injection Vulnerability
2019-01-10
http://www.securityfocus.com/bid/106518

Exploint

OpenSource ERP 6.3.1. - SQL Injection

eBrigade ERP 4.5 - SQL Injection

Event Locations 1.0.1 - 'id' SQL Injection

Event Calendar 3.7.4 - 'id' SQL Injection

10.1.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Cisco Identity Services Engine Cross Site Scripting and HTML-injection Vulnerabilities
2019-01-09
http://www.securityfocus.com/bid/106513

Cisco IOS and IOS XE Software CVE-2018-0282 Denial of Service Vulnerability
2019-01-09
http://www.securityfocus.com/bid/106510

Cisco TelePresence Management Suite CVE-2018-15467 Cross Site Scripting Vulnerability
2019-01-09
http://www.securityfocus.com/bid/106508

IBM API Connect CVE-2018-1932 Information Disclosure Vulnerability
2019-01-09
http://www.securityfocus.com/bid/106486

Symantec Norton App Lock CVE-2018-18363 Local Security Bypass Vulnerability
2019-01-09
http://www.securityfocus.com/bid/106450

Exploint

MLMPro 1.0 - SQL Injection

Architectural 1.0 - 'email' SQL Injection

Shield CMS 2.2 - 'email' SQL Injection

doitX 1.0 - 'search' SQL Injection

Matrix MLM Script 1.0 - Information Disclosure

eBrigade ERP 4.5 - Arbitrary File Download

PEAR Archive_Tar < 1.4.4 - PHP Object Injection

RGui 3.5.0 - Local Buffer Overflow (SEH)(DEP Bypass)

BlogEngine 3.3 - XML External Entity Injection

polkit - Temporary auth Hijacking via PID Reuse and Non-atomic Fork

Microsoft Windows - DSSVC CheckFilePermission Arbitrary File Deletion

ZTE MF65 BD_HDV6MF65V1.0.0B05 - Cross-Site Scripting

Microsoft Office SharePoint Server 2016 - Denial of Service (Metasploit)

Heatmiser Wifi Thermostat 1.7 - Cross-Site Request Forgery (Update Admin)

Google Chrome V8 JavaScript Engine 71.0.3578.98 - Out-of-Memory. Denial of Service (PoC)

9.1.2019

Bugtraq

 

Malware

Exp.CVE-2019-0566

Exp.CVE-2019-0569

Phishing

 

Vulnerebility

IBM API Connect CVE-2018-1932 Information Disclosure Vulnerability
2019-01-09
http://www.securityfocus.com/bid/106486

SAP ABAP Application Server CVE-2019-0248 Gateway Information Disclosure Vulnerability
2019-01-08
http://www.securityfocus.com/bid/106471

SAP Financial Consolidation Cube Designer CVE-2018-2499 Information Disclosure Vulnerability
2019-01-08
http://www.securityfocus.com/bid/106466

Exploint

Microsoft Windows - Windows Error Reporting Local Privilege Escalation

MDwiki < 0.6.2 - Cross-Site Scripting

8.1.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

SAP Landscape Management CVE-2019-0249 Information Disclosure Vulnerability
2019-01-08
http://www.securityfocus.com/bid/106464

SAP Cloud Connector CVE-2019-0246 Multiple Unspecified Security Vulnerabilities
2019-01-08
http://www.securityfocus.com/bid/106463

SAP Hybris Commerce CVE-2019-0238 Cross Site Scripting Vulnerability
2019-01-08
http://www.securityfocus.com/bid/106462

Microsoft Windows DNS Server CVE-2018-8626 Heap Buffer Overflow Vulnerability
2019-01-07
http://www.securityfocus.com/bid/106076

Microsoft Windows Kernel CVE-2018-8611 Local Privilege Escalation Vulnerability
2019-01-07
http://www.securityfocus.com/bid/106082

SANS News

 

Exploint

Wireshark - 'get_t61_string' Heap Out-of-Bounds Read

Dolibarr ERP-CRM 8.0.4 - 'rowid' SQL Injection

CF Image Hosting Script 1.6.5 - (Delete all Pictures) Privilege Escalation

KioWare Server Version 4.9.6 - Weak Folder Permissions Privilege Escalation

Huawei E5330 21.210.09.00.158 - Cross-Site Request Forgery (Send SMS)

Leica Geosystems GR10/GR25/GR30/GR50 GNSS 4.30.063 - JS/HTML Code Injection

Leica Geosystems GR10/GR25/GR30/GR50 GNSS 4.30.063 - Cross-Site Request Forgery

 

7.1.2019

Bugtraq

 

Malware

 

Phishing

Walmart Order

7th January 2019

Thank You For Buying From
Walmart - Confirmation Needed

Fedex

7th January 2019

LAST REMINDER : NANCYTYLER
,please respond immediately

- Cannabliss CBD

6th January 2019

Confirm Your Order Today!!

Vulnerebility

Microsoft Windows DNS Server CVE-2018-8626 Heap Buffer Overflow Vulnerability
2019-01-07
http://www.securityfocus.com/bid/106076

Microsoft Windows Kernel CVE-2018-8611 Local Privilege Escalation Vulnerability
2019-01-07
http://www.securityfocus.com/bid/106082

SANS News

 

Exploint

Foscam Video Management System 1.1.4.9 - 'Username' Denial of Service (PoC)

SpotFTP Password Recover 2.4.2 - 'Name' Denial of Service (PoC)

BlueAuditor 1.7.2.0 - 'Key' Denial of Service (PoC)

Ajera Timesheets 9.10.16 - Deserialization of Untrusted Data

Roxy Fileman 1.4.5 - Unrestricted File Upload / Directory Traversal

MyT Project Management 1.5.1 - 'Charge[group_total]' SQL Injection

Wordpress Plugin UserPro < 4.9.21 - User Registration Privilege Escalation

phpMoAdmin MongoDB GUI 1.1.5 - Cross-Site Request Forgery / Cross-Site Scripting

PLC Wireless Router GPN2.4P21-C-CN - Cross-Site Scripting

MyBB OUGC Awards Plugin 1.8.3 - Persistent Cross-Site Scripting

LayerBB 1.1.1 - Persistent Cross-Site Scripting

Microsoft Edge 44.17763.1.0 - NULL Pointer Dereference

All in One Video Downloader 1.2 - Authenticated SQL Injection

Embed Video Scripts - Persistent Cross-Site Scripting

Mailcleaner - Authenticated Remote Code Execution (Metasploit)

Mailcleaner - Authenticated Remote Code Execution (Metasploit)

6.1.2019

Bugtraq

 

Malware

 

Phishing

- Cannabliss CBD

6th January 2019

Confirm Your Order Today!!

Vulnerebility

RETIRED: Adobe Acrobat and Reader CVE-2018-19725 Security Bypass Vulnerability
2019-01-04
http://www.securityfocus.com/bid/106438

Adobe Acrobat and Reader APSB18-41 Multiple Unspecified Security Bypass Vulnerabilities
2019-01-04
http://www.securityfocus.com/bid/106165

Adobe Acrobat and Reader APSB18-41 Multiple Arbitrary Code Execution Vulnerabilities
2019-01-04
http://www.securityfocus.com/bid/106164

Adobe Acrobat and Reader CVE-2018-16018 Security Bypass Vulnerability
2019-01-03
http://www.securityfocus.com/bid/106449

Hetronic Nova-M CVE-2018-19023 Authentication Bypass Vulnerability
2019-01-03
http://www.securityfocus.com/bid/106448

SANS News

 

Exploint

 

4.1.2019

Bugtraq

 

Malware

OSX.Windtail

W64.Flobal

Phishing

 

Vulnerebility

Yokogawa Vnet/IP Open Communication Driver CVE-2018-16196 Denial of Service Vulnerability
2019-12-21
http://www.securityfocus.com/bid/106442

OpenAFS CVE-2018-16949 Multiple Denial of Service Vulnerabilities
2019-09-11
http://www.securityfocus.com/bid/106375

Adobe Acrobat and Reader APSB18-41 Multiple Arbitrary Code Execution Vulnerabilities
2019-01-04
http://www.securityfocus.com/bid/106164

Adobe Acrobat and Reader CVE-2018-19725 Security Bypass Vulnerability
2019-01-03
http://www.securityfocus.com/bid/106438

OpenSSL CVE-2018-0734 Side Channel Attack Information Disclosure Vulnerability
2019-01-02
http://www.securityfocus.com/bid/105758

SANS News

 

Exploint

 

3.1.2019

Bugtraq

 

Malware

Downloader.Jumpta

Phishing

info ON BEHALF OF Clear-One*

3rd January 2019

One* Payment Will Pay OFF Debt
Faster {shadowrider2006}*

Vulnerebility

Adobe Acrobat and Reader CVE-2018-19725 Security Bypass Vulnerability
2019-01-03
http://www.securityfocus.com/bid/106438

OpenSSL CVE-2018-0734 Side Channel Attack Information Disclosure Vulnerability
2019-01-02
http://www.securityfocus.com/bid/105758

OpenSSL CVE-2018-5407 Side Channel Attack Information Disclosure Vulnerability
2019-01-02
http://www.securityfocus.com/bid/105897

SANS News

 

Exploint

 

2.1.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

OpenSSL CVE-2018-0734 Side Channel Attack Information Disclosure Vulnerability
2019-01-02
http://www.securityfocus.com/bid/105758

OpenSSL CVE-2018-5407 Side Channel Attack Information Disclosure Vulnerability
2019-01-02
http://www.securityfocus.com/bid/105897

Xen 'vmx.c' Denial of Service Vulnerability
2019-01-02
http://www.securityfocus.com/bid/105817

IBM Quality Manager CVE-2017-1609 Cross Site Scripting Vulnerability
2019-01-02
http://www.securityfocus.com/bid/106384

SANS News

 

Exploint

NetworkSleuth 3.0.0.0 - 'Key' Denial of Service (PoC)

EZ CD Audio Converter 8.0.7 - Denial of Service (PoC)

Frog CMS 0.9.5 - Cross-Site Scripting

WordPress Plugin Adicon Server 1.2 - 'selectedPlace' SQL Injection

Vtiger CRM 7.1.0 - Remote Code Execution

NBMonitor Network Bandwidth Monitor 1.6.5.0 - 'Name' Denial of Service (PoC)

1.1.2019

Bugtraq

 

Malware

Trojan.Zleloa

Phishing

 

Vulnerebility

F5 BIG-IP APM CVE-2018-15334 Cross Site Request Forgery Vulnerability
2019-01-01
http://www.securityfocus.com/bid/106364

Node.js Multiple Denial of Service Vulnerabilities
2019-01-01
http://www.securityfocus.com/bid/106363

JasPer 'base/jas_malloc.c' Memory Leak Information Disclosure Vulnerability
2018-12-31
http://www.securityfocus.com/bid/106373

GNU Binutils CVE-2018-20623 Heap Based Buffer Overflow Vulnerability
2018-12-31
http://www.securityfocus.com/bid/106370

SANS News

 

Exploint