Databáze Hot News 2019- Rok - Úvod  2019  2018  2017  2016  2015  2014  2013  Databáze - Úvod  Bugtraq  Malware   Phishing  Vulnerebility  SANS  Mobil Virus  Exploit  Útoky  IDS/IPS  Techniky hackerů  Threatpost


2018 January February March April May June July August September October November December


28.6.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Intel Microarchitectural Data Sampling Multiple Local Information Disclosure Vulnerabilities
2019-06-28
http://www.securityfocus.com/bid/108330

IBM Sterling B2B Integrator CVE-2019-4377 Information Disclosure Vulnerability
2019-06-28
http://www.securityfocus.com/bid/108915

Symantec Endpoint Encryption CVE-2019-9703 Local Privilege Escalation Vulnerability
2019-06-28
http://www.securityfocus.com/bid/108796

Symantec Endpoint Encryption CVE-2019-9702 Local Privilege Escalation Vulnerability
2019-06-28
http://www.securityfocus.com/bid/108795

Exploint

LibreNMS 1.46 - 'addhost' Remote Code Execution

26.6.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Linux kernel CVE-2019-12817 Local Privilege Escalation Vulnerability
2019-06-26
http://www.securityfocus.com/bid/108884

Exploint

Nagios XI 5.5.6 - Magpie_debug.php Root Remote Code Execution (Metasploit)

Mozilla Spidermonkey - IonMonkey 'Array.prototype.pop' Type Confusion

25.6.2019

Bugtraq

 

Malware

Exp.CVE-2019-0888

Trojan.Amadey

Trojan.Malmsi

Backdoor.Powerton

Phishing

 

Vulnerebility

Multiple Cisco Products CVE-2019-1845 Denial of Service Vulnerability
2019-06-25
http://www.securityfocus.com/bid/108615

Kubernetes CVE-2019-11246 Incomplete Fix Arbitrary File Overwrite Vulnerability
2019-06-25
http://www.securityfocus.com/bid/108866

Exploint

WordPress Plugin Live Chat Unlimited 2.8.3 - Cross-Site Scripting

WordPress Plugin iLive 1.0.4 - Cross-Site Scripting

BlogEngine.NET 3.3.6/3.3.7 - 'path' Directory Traversal

AZADMIN CMS 1.0 - SQL Injection

Fortinet FCM-MB40 - Cross-Site Request Forgery / Remote Command Execution

SAPIDO RB-1732 - Remote Command Execution

SuperDoctor5 - 'NRPE' Remote Code Execution

24.6.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Samba CVE-2019-12436 Remote Denial of Service Vulnerability
2019-06-24
http://www.securityfocus.com/bid/108823

Samba CVE-2019-12435 Remote Denial of Service Vulnerability
2019-06-24
http://www.securityfocus.com/bid/108825

Exploint

Microsoft Windows Font Cache Service - Insecure Sections Privilege Escalation

Microsoft Windows - 'CmpAddRemoveContainerToCLFSLog' Arbitrary File/Directory Creation

GrandNode 4.40 - Path Traversal / Arbitrary File Download

GSearch 1.0.1.0 - Denial of Service (PoC)

SeedDMS < 5.1.11 - 'out.GroupMgr.php' Cross-Site Scripting

SeedDMS < 5.1.11 - 'out.UsrMgr.php' Cross-Site Scripting

SeedDMS versions < 5.1.11 - Remote Command Execution

dotProject 2.1.9 - SQL Injection

23.6.2019

Bugtraq

 

Malware

 

Phishing

=?UTF-8?Q?ESSENTIAL CBD EXTRAC

22nd June 2019

WHY IS EVERYONE TALKING ABOUT
CBD?

Vulnerebility

 

Exploint

 

21.6.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Microsoft Internet Explorer CVE-2019-0995 Security Bypass Vulnerability
2019-06-21
http://www.securityfocus.com/bid/108310

Mozilla Firefox and Firefox ESR CVE-2019-11708 Security Bypass Vulnerability
2019-06-21
http://www.securityfocus.com/bid/108835

Mozilla Firefox and Firefox ESR CVE-2019-11707 Denial of Service Vulnerability
2019-06-21
http://www.securityfocus.com/bid/108810

Cisco Prime Service Catalog CVE-2019-1875 Cross Site Scripting Vulnerability
2019-06-21
http://www.securityfocus.com/bid/108836

IBM Tririga Application Platform CVE-2018-2008 Unspecified Information Disclosure Vulnerability
2019-06-21
http://www.securityfocus.com/bid/108843

Cisco Integrated Management Controller CVE-2019-1629 Arbitrary File Write Vulnerability
2019-06-21
http://www.securityfocus.com/bid/108852

Exploint

EA Origin < 10.5.38 - Remote Code Execution

20.6.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Intel Microarchitectural Data Sampling Multiple Local Information Disclosure Vulnerabilities
2019-06-20
http://www.securityfocus.com/bid/108330

OpenSSL CVE-2019-1559 Information Disclosure Vulnerability
2019-06-20
http://www.securityfocus.com/bid/107174

Exploint

Cisco Prime Infrastructure - Runrshell Privilege Escalation (Metasploit)

Cisco Prime Infrastructure Health Monitor - TarArchive Directory Traversal (Metasploit)

Linux - Use-After-Free via race Between modify_ldt() and #BR Exception

BlogEngine.NET 3.3.6/3.3.7 - XML External Entity Injection

WebERP 4.15 - SQL injection

Tuneclone 2.20 - Local SEH Buffer Overflow

19.6.2019

Bugtraq

 

Malware

 

Phishing

Client service

19th June 2019

- Amazon - your friend with
benefits. Get yours now

Vulnerebility

Symantec DLP CVE-2019-9701 Cross Site Scripting Vulnerability
2019-06-19
http://www.securityfocus.com/bid/108733

Exploint

BlogEngine.NET 3.3.6/3.3.7 - 'theme Cookie' Directory Traversal / Remote Code Execution

BlogEngine.NET 3.3.6/3.3.7 - 'dirPath' Directory Traversal / Remote Code Execution

18.6.2019

Bugtraq

 

Malware

 

Phishing

AOL : Oath Team

17th June 2019

Account Review

AOL OATH Policy Change

16th June 2019

@2019 AOL OATH Member Policy &
Privacy Update

Vulnerebility

Microsoft Windows Remote Desktop Services CVE-2019-0708 Remote Code Execution Vulnerability
2019-06-18
http://www.securityfocus.com/bid/108273

WhatsApp CVE-2018-6350 Out of Bounds Read Denial of Service Vulnerability
2019-06-18
http://www.securityfocus.com/bid/108803

Exploint

Serv-U FTP Server < 15.1.7 - Local Privilege Escalation

Sahi pro 8.x - Cross-Site Scripting

Sahi pro 8.x - SQL Injection

Sahi pro 7.x/8.x - Directory Traversal

17.6.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Cisco Identity Services Engine CVE-2018-0187 Information Disclosure Vulnerability
2019-06-17
http://www.securityfocus.com/bid/106717

Google Chrome CVE-2019-5842 Remote Security Vulnerability
2019-06-17
http://www.securityfocus.com/bid/108758

QEMU 'tcp_subr.c' Local Heap Buffer Overflow Vulnerability
2019-06-17
http://www.securityfocus.com/bid/106758

Exploint

Microsoft Windows - UAC Protection Bypass (Via Slui File Handler Hijack) (PowerShell)

Thunderbird ESR < 60.7.XXX - 'icalrecur_add_bydayrules' Stack-Based Buffer Overflow

Thunderbird ESR < 60.7.XXX - 'parser_get_next_char' Heap-Based Buffer Overflow

Thunderbird ESR < 60.7.XXX - 'icalmemorystrdupanddequote' Heap-Based Buffer Overflow

Thunderbird ESR < 60.7.XXX - Type Confusion

Spring Security OAuth - Open Redirector

AROX School-ERP Pro - Unauthenticated Remote Command Execution (Metasploit)

Netperf 2.6.0 - Stack-Based Buffer Overflow

Exim 4.87 - 4.91 - Local Privilege Escalation

HC10 HC.Server Service 10.14 - Remote Invalid Pointer Write

CleverDog Smart Camera DOG-2W / DOG-2W-V4 - Multiple Vulnerabilities

RedwoodHQ 2.5.5 - Authentication Bypass

CleverDog Smart Camera DOG-2W / DOG-2W-V4 - Multiple Vulnerabilities

RedwoodHQ 2.5.5 - Authentication Bypass

16.6.2019

Bugtraq

 

Malware

 

Phishing

AOL OATH Policy Change

16th June 2019

@2019 AOL OATH Member Policy &
Privacy Update

Vulnerebility

 

Exploint

 

14.6.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

 

Exploint

CentOS 7.6 - 'ptrace_scope' Privilege Escalation

Aida64 6.00.5100 - 'Log to CSV File' Local SEH Buffer Overflow

13.6.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Apache httpd CVE-2019-0196 Security Bypass Vulnerability
2019-06-13
http://www.securityfocus.com/bid/107669

RETIRED: Microsoft Windows Task Scheduler CVE-2019-1069 Local Privilege Escalation Vulnerability
2019-06-13
http://www.securityfocus.com/bid/108588

Microsoft Windows 'SetJobFileSecurityByName()' Function Local Privilege Escalation Vulnerability
2019-06-13
http://www.securityfocus.com/bid/108423

Microsoft Windows CVE-2019-1064 Local Privilege Escalation Vulnerability
2019-06-13
http://www.securityfocus.com/bid/108587

Microsoft Windows Shell CVE-2019-1053 Local Privilege Escalation Vulnerability
2019-06-13
http://www.securityfocus.com/bid/108585

Microsoft Windows Installer CVE-2019-0973 DLL Loading Local Privilege Escalation Vulnerability
2019-06-13
http://www.securityfocus.com/bid/108651

Exploint

 

12.6.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

 

Exploint

FusionPBX 4.4.3 - Remote Command Execution

11.6.2019

Bugtraq

 

Malware

 

Phishing

National Bank of Abu Dhabi

11th June 2019

Re: Attn For Your
($15,500,000.00) Funds
Transfer

Vulnerebility

Microsoft Windows AppX Deployment Service Incomplete Fix Local Privilege Escalation Vulnerability
2019-06-11
http://www.securityfocus.com/bid/108696

SAP Enterprise Financial Services CVE-2018-2484 Remote Authorization Bypass Vulnerability
2019-06-11
http://www.securityfocus.com/bid/106477

SAP Solution Manager CVE-2019-0291 Local Information Disclosure Vulnerability
2019-06-11
http://www.securityfocus.com/bid/108313

SAP Business Client Unspecified Security Vulnerability
2019-06-11
http://www.securityfocus.com/bid/104436

SAP NetWeaver Process Integration CVE-2019-0316 Cross Site Scripting Vulnerability
2019-06-11
http://www.securityfocus.com/bid/108705

SAP R/3 Enterprise Application CVE-2019-0311 Cross Site Scripting Vulnerability
2019-06-11
http://www.securityfocus.com/bid/108704

SAP NetWeaver Process Integration CVE-2019-0305 Clickjacking Vulnerability
2019-06-11
http://www.securityfocus.com/bid/108702

SAP E-Commerce CVE-2019-0308 Remote Code Injection Vulnerability
2019-06-11
http://www.securityfocus.com/bid/108700

SAP HANA Extended Application Services CVE-2019-0306 Information Disclosure Vulnerability
2019-06-11
http://www.securityfocus.com/bid/108699

SAP Work and Inventory Manager CVE-2019-0314 Denial of Service Vulnerability
2019-06-11
http://www.securityfocus.com/bid/108698

Atlassian Crowd and Crowd Data Center CVE-2019-11580 Remote Code Execution Vulnerability
2019-06-11
http://www.securityfocus.com/bid/108637

Exploint

Webmin 1.910 - 'Package Updates' Remote Command Execution (Metasploit)

Liferay Portal 7.1 CE GA=3 / SimpleCaptcha API - Cross-Site Scripting

phpMyAdmin 4.8 - Cross-Site Request Forgery

WordPress Plugin Insert or Embed Articulate Content into WordPress - Remote Code Execution

ProShow 9.0.3797 - Local Privilege Escalation

10.6.2019

Bugtraq

 

Malware

 

Phishing

Microsoft Outlook

9th June 2019

Termination Request For Your
Hotmail Outlook Account

Vulnerebility

Infomir Ministra TV Platform Multiple Security Vulnerabilities
2019-06-10
http://www.securityfocus.com/bid/108695

Exploint

Ubuntu 18.04 - 'lxd' Privilege Escalation

UliCMS 2019.1 'Spitting Lama' - Persistent Cross-Site Scripting

9.6.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

VMware Workstation CVE-2019-5525 Local Code Execution Vulnerability
2019-06-06
http://www.securityfocus.com/bid/108674

VMware Tools CVE-2019-5522 Local Information Disclosure Vulnerability
2019-06-06
http://www.securityfocus.com/bid/108673

Exploint

Microsoft Windows - AppX Deployment Service Local Privilege Escalation (3)

Exim 4.87 < 4.91 - (Local / Remote) Command Execution

Vim < 8.1.1365 / Neovim < 0.3.6 - Arbitrary Code Execution

Nvidia GeForce Experience Web Helper - Command Injection

6.6.2019

Bugtraq

 

Malware

OSX.Keysteal

Phishing

 

Vulnerebility

 

Exploint

Supra Smart Cloud TV - 'openLiveURL()' Remote File Inclusion

5.6.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Microsoft Outlook Web Access with RSA SecurID Authentication Bypass Vulnerability
2019-06-05
http://www.securityfocus.com/bid/4390

Microsoft Exchange 2000 Post Authorization License Exhaustion Denial Of Service Vulnerability
2019-06-05
http://www.securityfocus.com/bid/5413

Microsoft Exchange 2000 Multiple MSRPC Denial Of Service Vulnerabilities
2019-06-05
http://www.securityfocus.com/bid/5412

Microsoft Outlook Web Access for Exchange Server 'redir.asp' URI Redirection Vulnerability
2019-06-05
http://www.securityfocus.com/bid/31765

Microsoft Outlook Web Access Login Form Remote URI Redirection Vulnerability
2019-06-05
http://www.securityfocus.com/bid/12459

Microsoft Outlook Web Access for Exchange Server 2003 Cross Site Request Forgery Vulnerability
2019-06-05
http://www.securityfocus.com/bid/41843

Microsoft Exchange Server Outlook Web Access Cross Site Request Forgery Vulnerability
2019-06-05
http://www.securityfocus.com/bid/41462

Microsoft Exchange Server Remote Privilege Escalation Vulnerability
2019-06-05
http://www.securityfocus.com/bid/106725

Django CVE-2019-12308 Cross Site Scripting Vulnerability
2019-06-05
http://www.securityfocus.com/bid/108559

Geutebruck G-Cam and G-Code HTML Injection and Multiple OS Command Injection Vulnerabilities
2019-06-05
http://www.securityfocus.com/bid/108579

Phoenix Contact FL NAT SMx Ethernet Switches CVE-2019-9744 Authorization Bypass Vulnerability
2019-06-05
http://www.securityfocus.com/bid/108576

Exploint

IBM Websphere Application Server - Network Deployment Untrusted Data Deserialization Remote Code Execution (Metasploit)

Google Chrome 73.0.3683.103 - 'WasmMemoryObject::Grow' Use-After-Free

Zimbra < 8.8.11 - XML External Entity Injection / Server-Side Request Forgery

LibreNMS - addhost Command Injection (Metasploit)

4.6.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Google Android 'Framework' Component Multiple Security Vulnerabilities
2019-06-04
http://www.securityfocus.com/bid/105847

ImageMagick CVE-2018-16750 Denial of Service Vulnerability
2019-06-03
http://www.securityfocus.com/bid/108492

FreeBSD CVE-2018-6918 Denial of Service Vulnerability
2019-06-03
http://www.securityfocus.com/bid/103666

Apache Hadoop CVE-2018-8029 Remote Privilege Escalation Vulnerability
2019-06-03
http://www.securityfocus.com/bid/108518

Django CVE-2019-12308 Cross Site Scripting Vulnerability
2019-06-03
http://www.securityfocus.com/bid/108559

Google Android Kernel Components CVE-2019-2101 Information Disclosure Vulnerability
2019-06-03
http://www.securityfocus.com/bid/108557

Qualcomm Components Multiple Security Vulnerabilities
2019-06-03
http://www.securityfocus.com/bid/108555

Google Android System Component Multiple Security Vulnerabilities
2019-06-03
http://www.securityfocus.com/bid/108554

Google Android Framework Component Multiple Privilege Escalation Vulnerabilities
2019-06-03
http://www.securityfocus.com/bid/108552

Linux Kernel CVE-2019-12614 Denial of Service Vulnerability
2019-06-03
http://www.securityfocus.com/bid/108550

Linux Kernel CVE-2019-12615 Denial of Service Vulnerability
2019-06-03
http://www.securityfocus.com/bid/108549

Google Android Media Framework Component Multiple Security Vulnerabilities
2019-06-03
http://www.securityfocus.com/bid/108548

Qualcomm Closed Source Components Multiple Unspecified Vulnerabilities
2019-06-03
http://www.securityfocus.com/bid/108546

Fortinet FortiOS CVE-2018-13383 Heap Buffer Overflow Vulnerability
2019-06-03
http://www.securityfocus.com/bid/108539

Exploint

Cisco RV130W 1.0.3.44 - Remote Stack Overflow

Zoho ManageEngine ServiceDesk Plus 9.3 - 'PurchaseRequest.do' Cross-Site Scripting

Zoho ManageEngine ServiceDesk Plus 9.3 - 'SearchN.do' Cross-Site Scripting

Zoho ManageEngine ServiceDesk Plus 9.3 - 'SolutionSearch.do' Cross-Site Scripting

Zoho ManageEngine ServiceDesk Plus 9.3 - 'SiteLookup.do' Cross-Site Scripting

DVD X Player 5.5 Pro - Local Buffer Overflow (SEH)

NUUO NVRMini 2 3.9.1 - 'sscanf' Stack Overflow

IceWarp 10.4.4 - Local File Inclusion

3.6.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

ImageMagick CVE-2018-16750 Denial of Service Vulnerability
2019-06-03
http://www.securityfocus.com/bid/108492

FreeBSD CVE-2018-6918 Denial of Service Vulnerability
2019-06-03
http://www.securityfocus.com/bid/103666

Apache Hadoop CVE-2018-8029 Remote Privilege Escalation Vulnerability
2019-06-03
http://www.securityfocus.com/bid/108518

Fortinet FortiOS CVE-2018-13383 Heap Buffer Overflow Vulnerability
2019-06-03
http://www.securityfocus.com/bid/108539

Dell Kace K1000 Systems Management Appliance Multiple Security Vulnerabilities
2019-06-01
http://www.securityfocus.com/bid/108538

Exploint

AUO Solar Data Recorder < 1.3.0 - Incorrect Access Control

WordPress Plugin Form Maker 1.13.3 - SQL Injection

KACE System Management Appliance (SMA) < 9.0.270 - Multiple Vulnerabilities

2.6.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Microsoft Exchange Server CVE-2019-0858 Spoofing Vulnerability
2019-05-31
http://www.securityfocus.com/bid/107757

Microsoft Exchange Server CVE-2019-0817 Spoofing Vulnerability
2019-05-31
http://www.securityfocus.com/bid/107756

Microsoft Exchange Server CVE-2019-0686 Remote Privilege Escalation Vulnerability
2019-05-31
http://www.securityfocus.com/bid/106937

Microsoft Exchange Server CVE-2019-0724 Remote Privilege Escalation Vulnerability
2019-05-31
http://www.securityfocus.com/bid/106906

Microsoft Exchange Server Remote Privilege Escalation Vulnerability
2019-05-31
http://www.securityfocus.com/bid/106725

Microsoft Exchange Server CVE-2018-8581 Remote Privilege Escalation Vulnerability
2019-05-31
http://www.securityfocus.com/bid/105837

Microsoft Exchange Server CVE-2018-8448 Remote Privilege Escalation Vulnerability
2019-05-31
http://www.securityfocus.com/bid/105492

Microsoft Exchange Server CVE-2018-8265 Remote Code Execution Vulnerability
2019-05-31
http://www.securityfocus.com/bid/105491

Microsoft Exchange Server CVE-2018-8159 Remote Privilege Escalation Vulnerability
2019-05-31
http://www.securityfocus.com/bid/104056

Microsoft Exchange Server CVE-2018-8153 Spoofing Vulnerability
2019-05-31
http://www.securityfocus.com/bid/104045

Microsoft Exchange Server CVE-2018-8152 Remote Privilege Escalation Vulnerability
2019-05-31
http://www.securityfocus.com/bid/104043

Microsoft Exchange Server CVE-2018-0940 Remote Privilege Escalation Vulnerability
2019-05-31
http://www.securityfocus.com/bid/103323

Microsoft Exchange Server CVE-2017-11932 Spoofing Vulnerability
2019-05-31
http://www.securityfocus.com/bid/102060

Microsoft Exchange Server CVE-2017-8560 Remote Privilege Escalation Vulnerability
2019-05-31
http://www.securityfocus.com/bid/99449

Microsoft Exchange Server CVE-2017-8559 Remote Privilege Escalation Vulnerability
2019-05-31
http://www.securityfocus.com/bid/99448

Microsoft Exchange Server CVE-2017-0110 Remote Privilege Escalation Vulnerability
2019-05-31
http://www.securityfocus.com/bid/96621

Microsoft Exchange Server CVE-2016-0030 Spoofing Vulnerability
2019-05-31
http://www.securityfocus.com/bid/79890

Microsoft Exchange Server CVE-2016-0029 Spoofing Vulnerability
2019-05-31
http://www.securityfocus.com/bid/79889

Microsoft Exchange Server CVE-2016-0031 Spoofing Vulnerability
2019-05-31
http://www.securityfocus.com/bid/79888

Microsoft Exchange Server CVE-2016-0032 Spoofing Vulnerability
2019-05-31
http://www.securityfocus.com/bid/79884

Microsoft Exchange Server CVE-2013-5072 Cross Site Scripting Vulnerability
2019-05-31
http://www.securityfocus.com/bid/64085

Microsoft Exchange Server RSS Feed Remote Denial of Service Vulnerability
2019-05-31
http://www.securityfocus.com/bid/56836

Microsoft Exchange Server 2007 Infinite Loop Remote Denial of Service Vulnerability
2019-05-31
http://www.securityfocus.com/bid/45297

Microsoft Outlook Web Access for Exchange Server 2003 Cross Site Request Forgery Vulnerability
2019-05-31
http://www.securityfocus.com/bid/41843

Microsoft Exchange Server Outlook Web Access Cross Site Request Forgery Vulnerability
2019-05-31
http://www.securityfocus.com/bid/41462

Microsoft Exchange Server EMSMDB2 MAPI Command Remote Denial of Service Vulnerability
2019-05-31
http://www.securityfocus.com/bid/33136

Microsoft Exchange Server TNEF Decoding Remote Code Execution Vulnerability
2019-05-31
http://www.securityfocus.com/bid/33134

Microsoft Outlook Web Access for Exchange Server 'redir.asp' URI Redirection Vulnerability
2019-05-31
http://www.securityfocus.com/bid/31765

Microsoft Outlook Web Access for Exchange Server Email Field Cross-Site Scripting Vulnerability
2019-05-31
http://www.securityfocus.com/bid/30130

Exploint

 

31.5.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Microsoft Windows Remote Desktop Services CVE-2019-0708 Remote Code Execution Vulnerability
2019-05-31
http://www.securityfocus.com/bid/108273

RETIRED: Google Android Broadcom Wi-Fi Driver CVE-2017-0509 Privilege Escalation Vulnerability
2019-05-30
http://www.securityfocus.com/bid/96797

Huawei Smart Phone P9 and Google Android Broadcom Driver Wi-FI Driver Buffer Overflow Vulnerability
2019-05-30
http://www.securityfocus.com/bid/94943

Multiple VMware Products CVE-2019-5515 Out-Of-Bounds Write Local Code Execution Vulnerability
2019-05-30
http://www.securityfocus.com/bid/107634

Fuji Electric Alpha7 PC Loader Out-of-Bounds Read Denial of Service Vulnerability
2019-05-30
http://www.securityfocus.com/bid/108359

Apache Hadoop CVE-2018-8029 Remote Privilege Escalation Vulnerability
2019-05-30
http://www.securityfocus.com/bid/108518

ISC BIND CVE-2019-6469 Remote Denial of Service Vulnerability
2019-05-30
http://www.securityfocus.com/bid/108517

Exploint

Microsoft Windows Remote Desktop - 'BlueKeep' Denial of Service

30.5.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Fuji Electric Alpha7 PC Loader Out-of-Bounds Read Denial of Service Vulnerability
2019-05-30
http://www.securityfocus.com/bid/108359

Exploint

Microsoft Windows 8.1/ Server 2012 - 'Win32k.sys' Local Privilege Escalation (MS14-058)

29.5.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Oracle VM VirtualBox Mulltiple Local Security Vulnerabilities
2019-05-29
http://www.securityfocus.com/bid/107960

WebKit Information Disclosure and Multiple Memory Corruption Vulnerabilities
2019-05-28
http://www.securityfocus.com/bid/108497

WAGO Series 750-88x and 750-87x ICSA-19-106-02 Remote Security Vulnerability
2019-05-28
http://www.securityfocus.com/bid/108482

Exploint

Oracle Application Testing Suite - WebLogic Server Administration Console War Deployment (Metasploit)

Qualcomm Android - Kernel Use-After-Free via Incorrect set_page_dirty() in KGSL

Spidermonkey - IonMonkey Unexpected ObjectGroup in ObjectGroupDispatch Operation

Spidermonkey - IonMonkey Leaks JS_OPTIMIZED_OUT Magic Value to Script

28.5.2019

Bugtraq

 

Malware

Exp.CVE-2019-0752

Phishing

 

Vulnerebility

WAGO Series 750-88x and 750-87x ICSA-19-106-02 Remote Security Vulnerability
2019-05-28
http://www.securityfocus.com/bid/108482

Zoho ManageEngine Applications Manager '/auditLogAction.do' Module SQL Injection Vulnerability
2019-05-27
http://www.securityfocus.com/bid/108470

Linux Kernel CVE-2019-12379 Denial of Service Vulnerability
2019-05-27
http://www.securityfocus.com/bid/108478

Linux Kernel CVE-2019-12378 Denial of Service Vulnerability
2019-05-27
http://www.securityfocus.com/bid/108475

Linux Kernel CVE-2019-12382 Denial of Service Vulnerability
2019-05-27
http://www.securityfocus.com/bid/108474

Linux Kernel CVE-2019-12381 Denial of Service Vulnerability
2019-05-27
http://www.securityfocus.com/bid/108473

Exploint

Phraseanet < 4.0.7 - Cross-Site Scripting

Petraware pTransformer ADC < 2.1.7.22827 - Login Bypass

EquityPandit 1.0 - Password Disclosure

27.5.2019

Bugtraq

 

Malware

Backdoor.Whisperer

Backdoor.Tavroigu

Phishing

 

Vulnerebility

Zoho ManageEngine Applications Manager '/auditLogAction.do' Module SQL Injection Vulnerability
2019-05-27
http://www.securityfocus.com/bid/108470

Exploint

Typora 0.9.9.24.6 - Directory Traversal

Deltek Maconomy 2.2.5 - Local File Inclusion

Pidgin 2.13.0 - Denial of Service (PoC)

26.5.2019

Bugtraq

 

Malware

 

Phishing

ANZ

25th May 2019

Successful BPAY Payment
Advice.

FEDEX 03675743634137@036757436

25th May 2019

kaminanga, The package
THLBT-222034-LRHA could not be
delivered

Vulnerebility

Adobe Flash Player CVE-2019-7837 Use After Free Arbitrary Code Execution Vulnerability
2019-05-24
http://www.securityfocus.com/bid/108312

Multiple F-Secure Windows Endpoint Protection Products Local Code Execution Vulnerability
2019-05-24
http://www.securityfocus.com/bid/108443

Multiple VMware Products CVE-2019-5519 Local Code Execution Vulnerability
2019-05-24
http://www.securityfocus.com/bid/107535

Exploint

 

24.5.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Adobe Flash Player CVE-2019-7837 Use After Free Arbitrary Code Execution Vulnerability
2019-05-24
http://www.securityfocus.com/bid/108312

Multiple F-Secure Windows Endpoint Protection Products Local Code Execution Vulnerability
2019-05-24
http://www.securityfocus.com/bid/108443

Multiple VMware Products CVE-2019-5519 Local Code Execution Vulnerability
2019-05-24
http://www.securityfocus.com/bid/107535

Atlassian Bitbucket Server CVE-2019-3397 Directory Traversal Vulnerability
2019-05-23
http://www.securityfocus.com/bid/108447

Exploint

Microsoft Internet Explorer Windows 10 1809 17763.316 - Scripting Engine Memory Corruption

Cyberoam General Authentication Client 2.1.2.7 - 'Server Address' Denial of Service (PoC)

Cyberoam Transparent Authentication Suite 2.1.2.5 - 'NetBIOS Name' Denial of Service (PoC)

Cyberoam Transparent Authentication Suite 2.1.2.5 - 'Fully Qualified Domain Name' Denial of Service (PoC)

Cyberoam SSLVPN Client 1.3.1.30 - 'HTTP Proxy' Denial of Service (PoC)

Cyberoam SSLVPN Client 1.3.1.30 - 'Connect To Server' Denial of Service (PoC)

Axessh 4.2 - 'Log file name' Local Stack-based Buffer Overflow

Opencart 3.0.3.2 - 'extension/feed/google_base' Denial of Service PoC

Fast AVI MPEG Joiner - 'License Name' Denial of Service (PoC)

Microsoft Windows 7/2003/2008 RDP - Remote Code Execution

Horde Webmail 5.2.22 - Multiple Vulnerabilities

TapinRadio 2.11.6 - 'Uername' Denial of Service (PoC)

TapinRadio 2.11.6 - 'Address' Denial of Service (PoC)

RarmaRadio 2.72.3 - 'Username' Denial of Service (PoC)

RarmaRadio 2.72.3 - 'Server' Denial of Service (PoC)

Carel pCOWeb < B1.2.1 - Credentials Disclosure

Carel pCOWeb < B1.2.1 - Cross-Site Scripting

AUO Solar Data Recorder < 1.3.0 - 'addr' Cross-Site Scripting

Zoho ManageEngine ServiceDesk Plus 9.3 - Cross-Site Scripting

Zoho ManageEngine ServiceDesk Plus < 10.5 - Improper Access Restrictions

BlueStacks 4.80.0.1060 - Denial of Service (PoC)

21.5.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

 

Exploint

GetSimpleCMS - Unauthenticated Remote Code Execution (Metasploit)

macOS < 10.14.5 / iOS < 12.3 XNU - 'in6_pcbdetach' Stale Pointer Use-After-Free

macOS < 10.14.5 / iOS < 12.3 XNU - Wild-read due to bad cast in stf_ioctl

macOS < 10.14.5 / iOS < 12.3 JavaScriptCore - AIR Optimization Incorrectly Removes Assignment to Register

macOS < 10.14.5 / iOS < 12.3 JavaScriptCore - Loop-Invariant Code Motion (LICM) in DFG JIT Leaves Stack Variable Uninitialized

macOS < 10.14.5 / iOS < 12.3 DFG JIT Compiler - 'HasIndexedProperty' Use-After-Free

Brocade Network Advisor 14.4.1 - Unauthenticated Remote Code Execution

WordPress Plugin WPGraphQL 0.2.3 - Multiple Vulnerabilities

Oracle CTI Web Service - 'EBS_ASSET_HISTORY_OPERATIONS' XML Entity Injection

Deluge 1.3.15 - 'Webseeds' Denial of Service (PoC)

Deluge 1.3.15 - 'URL' Denial of Service (PoC)

TP-LINK TL-WR840N v5 00000005 - Cross-Site Scripting

Moodle Jmol Filter 6.1 - Directory Traversal / Cross-Site Scripting

20.5.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

 

Exploint

Solaris 7/8/9 (SPARC) - 'dtprintinfo' Local Privilege Escalation (2)

Solaris 7/8/9 (SPARC) - 'dtprintinfo' Local Privilege Escalation (1)

Solaris 10 1/13 (Intel) - 'dtprintinfo' Local Privilege Escalation

BulletProof FTP Server 2019.0.0.50 - 'Storage-Path' Denial of Service (PoC)

BulletProof FTP Server 2019.0.0.50 - 'DNS Address' Denial of Service (PoC)

AbsoluteTelnet 10.16 - 'License name' Denial of Service (PoC)

docPrint Pro 8.0 - Denial of Service (PoC)

PCL Converter 2.7 - Denial of Service (PoC)

Encrypt PDF 2.3 - Denial of Service (PoC)

eLabFTW 1.8.5 - Arbitrary File Upload / Remote Code Execution

Huawei eSpace 1.1.11.103 - 'ContactsCtrl.dll' / 'eSpaceStatusCtrl.dll' ActiveX Heap Overflow

Huawei eSpace 1.1.11.103 - Image File Format Handling Buffer Overflow

Huawei eSpace 1.1.11.103 - DLL Hijacking

Huawei eSpace Meeting 1.1.11.103 - 'cenwpoll.dll' SEH Buffer Overflow (Unicode)

16.5.2019

Bugtraq

 

Malware

W32.Bulehero

Ransom.Robbinhood

Phishing

 

Vulnerebility

Symantec Messaging Gateway CVE-2019-9699 Information Disclosure Vulnerability
2019-05-16
http://www.securityfocus.com/bid/108303

Exploint

VMware Workstation 15.1.0 - DLL Hijacking

SEL AcSELerator Architect 2.2.24 - CPU Exhaustion Denial of Service

Axessh 4.2 - 'Log file name' Denial of Service (PoC)

ZOC Terminal v7.23.4 - 'Shell' Denial of Service (PoC)

ZOC Terminal v7.23.4 - 'Private key file' Denial of Service (PoC)

ZOC Terminal 7.23.4 - 'Script' Denial of Service (PoC)

JetAudio jetCast Server 2.0 - 'Log Directory' Local SEH Alphanumeric Encoded Buffer Overflow

WeChat for Android 7.0.4 - 'vcodec2_hls_filter' Denial of Service

DeepSound 1.0.4 - SQL Injection

15.5.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Dnsmasq VU#973527 Multiple Security Vulnerabilities
2019-05-15
http://www.securityfocus.com/bid/101085

RETIRED: Multiple Siemens SCALANCE Products Multiple Security Vulnerabilities
2019-05-15
http://www.securityfocus.com/bid/101977

Mozilla Firefox ESR CVE-2017-7843 Security Bypass Vulnerability
2019-05-15
http://www.securityfocus.com/bid/102112

Mozilla Firefox MFSA2017-27 Multiple Security Vulnerabilities
2019-05-15
http://www.securityfocus.com/bid/102039

RETIRED: libssh2 'src/kex.c' Security Bypass Vulnerability
2019-05-15
http://www.securityfocus.com/bid/82514

Drupal Novalnet Payment Module- Ubercart Module SQL Injection Vulnerability
2019-05-15
http://www.securityfocus.com/bid/75039

RETIRED: Drupal Novalnet Payment Module SQL Injection Vulnerability
2019-05-15
http://www.securityfocus.com/bid/75040

QNAP QTAP Qualcomm components Multiple Unspecified Security Vulnerabilities
2019-05-15
http://www.securityfocus.com/bid/97072

Qemu 'hw/display/cirrus_vga.c' Remote Code Execution Vulnerability
2019-05-15
http://www.securityfocus.com/bid/97955

RETIRED: Citrix XenServer Multiple Security Vulnerabilities
2019-05-15
http://www.securityfocus.com/bid/102129

Google Android Multiple Qualcomm Components Multiple Security Vulnerabilities

Microsoft Office Access Connectivity Engine CVE-2019-0945 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108192

Adobe Acrobat and Reader APSB19-18 Multiple Information Disclosure Vulnerabilities
2019-05-14
http://www.securityfocus.com/bid/108326

Adobe Acrobat and Reader APSB19-18 Multiple Arbitrary Code Execution Vulnerabilities
2019-05-14
http://www.securityfocus.com/bid/108325

SAP Solution Manager CVE-2019-0293 Remote Authorization Bypass Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108324

Adobe Acrobat and Reader CVE-2019-7824 Arbitrary Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108323

Adobe Acrobat and Reader APSB19-18 Multiple Arbitrary Code Execution Vulnerabilities
2019-05-14
http://www.securityfocus.com/bid/108322

Adobe Acrobat and Reader CVE-2019-7784 Arbitrary Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108321

Adobe Acrobat and Reader Use After Free Multiple Arbitrary Code Execution Vulnerabilities
2019-05-14
http://www.securityfocus.com/bid/108320

Adobe Acrobat and Reader CVE-2019-7779 Arbitrary Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108319

Adobe Media Encoder CVE-2019-7844 Out of Bounds Read Information Disclosure Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108318

Adobe Media Encoder CVE-2019-7842 Use After Free Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108317

SAP BusinessObjects Business Intelligence CVE-2019-0287 Information Disclosure Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108316

Adobe Acrobat and Reader CVE-2019-7820 Arbitrary Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108315

SAP E-Commerce CVE-2019-0298 Cross Site Scripting Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108314

SAP Solution Manager CVE-2019-0291 Local Information Disclosure Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108313

Adobe Flash Player CVE-2019-7837 Use After Free Arbitrary Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108312

SAP BusinessObjects Business Intelligence CVE-2019-0289 Information Disclosure Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108311

Microsoft Internet Explorer CVE-2019-0995 Security Bypass Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108310

Microsoft Dynamics On-Premise CVE-2019-1008 Security Bypass Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108309

Microsoft Azure Active Directory Connect CVE-2019-1000 Remote Privilege Escalation Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108308

SAP Treasury and Risk Management CVE-2019-0280 Unauthorized Access Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108307

SAP Identity Management CVE-2019-0301 Remote Privilege Escalation Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108306

Microsoft Internet Explorer and Edge CVE-2019-0940 Remote Memory Corruption Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108278

Microsoft Edge CVE-2019-0938 Remote Privilege Escalation Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108276

Microsoft Internet Explorer CVE-2019-0930 Information Disclosure Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108275

Microsoft Windows Remote Desktop Services CVE-2019-0708 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108273

Microsoft Windows JET Database Engine CVE-2019-0902 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108272

Microsoft Windows JET Database Engine CVE-2019-0901 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108271

Microsoft Windows JET Database Engine CVE-2019-0900 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108270

Microsoft Windows JET Database Engine CVE-2019-0899 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108269

Microsoft Windows JET Database Engine CVE-2019-0898 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108268

Microsoft Windows JET Database Engine CVE-2019-0897 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108267

Microsoft Windows JET Database Engine CVE-2019-0896 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108266

Microsoft Windows JET Database Engine CVE-2019-0895 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108265

Microsoft Windows JET Database Engine CVE-2019-0894 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108264

Microsoft Windows JET Database Engine CVE-2019-0893 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108263

Microsoft Windows JET Database Engine CVE-2019-0891 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108262

Microsoft Windows JET Database Engine CVE-2019-0890 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108261

Microsoft Windows JET Database Engine CVE-2019-0889 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108260

Microsoft Internet Explorer CVE-2019-0929 Remote Memory Corruption Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108259

Microsoft Edge Chakra Scripting Engine CVE-2019-0937 Remote Memory Corruption Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108258

Microsoft Edge Chakra Scripting Engine CVE-2019-0933 Remote Memory Corruption Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108257

Microsoft Windows Defender Application Control CVE-2019-0733 Local Security Bypass Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108256

Microsoft Edge Chakra Scripting Engine CVE-2019-0927 Remote Memory Corruption Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108254

Microsoft Edge CVE-2019-0926 Remote Memory Corruption Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108253

Microsoft Windows CVE-2019-0734 Local Privilege Escalation Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108252

Microsoft Edge Chakra Scripting Engine CVE-2019-0925 Remote Memory Corruption Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108251

Microsoft Edge Chakra Scripting Engine CVE-2019-0924 Remote Memory Corruption Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108250

Microsoft SQL Server CVE-2019-0819 Information Disclosure Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108249

Microsoft Edge Chakra Scripting Engine CVE-2019-0923 Remote Memory Corruption Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108248

Microsoft Edge Chakra Scripting Engine CVE-2019-0922 Remote Memory Corruption Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108246

Microsoft .NET CVE-2019-0820 Denial of Service Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108245

Microsoft Internet Explorer CVE-2019-0921 Spoofing Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108244

Microsoft Windows Error Reporting CVE-2019-0863 Local Privilege Escalation Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108243

Microsoft Internet Explorer Scripting Engine CVE-2019-0918 Remote Memory Corruption Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108242

Microsoft .NET CVE-2019-0864 Denial of Service Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108241

Microsoft Azure DevOps Server and Team Foundation Server Cross Site Scripting Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108239

Microsoft Edge Chakra Scripting Engine CVE-2019-0917 Remote Memory Corruption Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108238

Microsoft Edge Chakra Scripting Engine CVE-2019-0916 Remote Memory Corruption Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108237

Microsoft Edge Chakra Scripting Engine CVE-2019-0915 Remote Memory Corruption Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108236

Microsoft Edge Chakra Scripting Engine CVE-2019-0914 Remote Memory Corruption Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108235

Microsoft Windows Kernel CVE-2019-0881 Remote Privilege Escalation Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108234

Microsoft Edge Chakra Scripting Engine CVE-2019-0913 Remote Memory Corruption Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108233

Microsoft ASP.NET Core CVE-2019-0980 Denial of Service Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108232

Microsoft Windows GDI Component CVE-2019-0882 Information Disclosure Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108231

Microsoft Windows OLE CVE-2019-0885 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108230

Microsoft Edge Chakra Scripting Engine CVE-2019-0912 Remote Memory Corruption Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108229

Microsoft Windows Hyper-V CVE-2019-0886 Local Information Disclosure Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108228

Microsoft Internet Explorer and Edge Scripting Engine Remote Memory Corruption Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108227

Microsoft Windows GDI Component CVE-2019-0758 Information Disclosure Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108226

Microsoft Windows Diagnostics Hub CVE-2019-0727 Local Privilege Escalation Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108225

Microsoft Windows DHCP Server CVE-2019-0725 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108224

Microsoft Internet Explorer and Edge Scripting Engine Remote Memory Corruption Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108223

Microsoft Windows Win32k CVE-2019-0892 Local Privilege Escalation Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108222

Microsoft Windows NDIS CVE-2019-0707 Local Privilege Escalation Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108221

Microsoft Skype for Android CVE-2019-0932 Information Disclosure Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108220

Microsoft Windows Storage Service CVE-2019-0931 Local Privilege Escalation Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108219

Microsoft SharePoint Server CVE-2019-0963 Cross Site Scripting Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108218

Microsoft Windows CVE-2019-0936 Local Privilege Escalation Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108217

Microsoft SharePoint Server CVE-2019-0958 Remote Privilege Escalation Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108216

Microsoft SharePoint Server CVE-2019-0957 Remote Privilege Escalation Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108215

Microsoft Windows Unified Write Filter CVE-2019-0942 Local Privilege Escalation Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108214

Microsoft SharePoint Server CVE-2019-0956 Information Disclosure Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108213

Microsoft Windows GDI+ Component CVE-2019-0903 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108212

Microsoft Word CVE-2019-0953 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108211

Microsoft NuGet Package Manager CVE-2019-0976 Tampering Security Bypass Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108210

Microsoft SharePoint Server CVE-2019-0952 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108209

Microsoft ASP.NET Core CVE-2019-0982 Denial of Service Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108208

Microsoft ASP.NET Core CVE-2019-0981 Denial of Service Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108207

Microsoft Azure DevOps Server and Team Foundation Server Cross Site Scripting Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108206

Microsoft Azure DevOps Server and Team Foundation Server Information Disclosure Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108205

Microsoft SharePoint Server CVE-2019-0951 Spoofing Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108203

Microsoft SharePoint Server CVE-2019-0950 Spoofing Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108201

Microsoft Windows GDI Component CVE-2019-0961 Information Disclosure Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108199

Microsoft SharePoint Server CVE-2019-0949 Spoofing Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108198

Microsoft Office Access Connectivity Engine CVE-2019-0947 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108194

Microsoft Office Access Connectivity Engine CVE-2019-0946 Remote Code Execution Vulnerability
2019-05-14
http://www.securityfocus.com/bid/108193

Exploint

Legrand BTicino Driver Manager F454 1.0.51 - Cross-Site Request Forgery / Cross-Site Scripting

CommSy 8.6.5 - SQL injection

Tomabo MP4 Converter 3.25.22 - Denial of Service (PoC)

PasteShr 1.6 - Multiple SQL Injection

Schneider Electric U.Motion Builder 1.3.4 - 'track_import_export.php object_id' Unauthenticated Command Injection

TwistedBrush Pro Studio 24.06 - '.srp' Denial of Service (PoC)

TwistedBrush Pro Studio 24.06 - 'Script Recorder' Denial of Service (PoC)

TwistedBrush Pro Studio 24.06 - 'Resize Image' Denial of Service (PoC)

Selfie Studio 2.17 - 'Resize Image' Denial of Service (PoC)

D-Link DWL-2600AP - Multiple OS Command Injection

Sales ERP 8.1 - Multiple SQL Injection

PHP-Fusion 9.03.00 - 'Edit Profile' Remote Code Execution (Metasploit)

14.5.2019

Bugtraq

 

Malware

Ransom.Ryuk

Phishing

 

Vulnerebility

 

Exploint

TwistedBrush Pro Studio 24.06 - '.srp' Denial of Service (PoC)

TwistedBrush Pro Studio 24.06 - 'Script Recorder' Denial of Service (PoC)

TwistedBrush Pro Studio 24.06 - 'Resize Image' Denial of Service (PoC)

Selfie Studio 2.17 - 'Resize Image' Denial of Service (PoC)

D-Link DWL-2600AP - Multiple OS Command Injection

Sales ERP 8.1 - Multiple SQL Injection

PHP-Fusion 9.03.00 - 'Edit Profile' Remote Code Execution (Metasploit)

13.5.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

 

Exploint

OpenProject 5.0.0 - 8.3.1 - SQL Injection

Google Chrome V8 - Turbofan JSCallReducer::ReduceArrayIndexOfIncludes Out-of-Bounds Read/Write

XOOPS 2.5.9 - SQL Injection

SOCA Access Control System 180612 - Cross-Site Request Forgery (Add Admin)

SOCA Access Control System 180612 - SQL Injection

SOCA Access Control System 180612 - Information Disclosure

DNSS 2.1.8 - Denial of Service (PoC)

SpotMSN 2.4.6 - Denial of Service (PoC)

10.5.2019

Bugtraq

 

Malware

 

Phishing

Service.Team

10th May 2019

[Important] : Your account has
been temporarily restricted

Vulnerebility

Multiple VMware Products CVE-2019-5518 Out of Bounds Read Write Local Code Execution Vulnerability
2019-05-10
http://www.securityfocus.com/bid/107541

Exploint

PHPRunner 10.1 - Denial of Service (PoC)

ASPRunner.NET 10.1 - Denial of Service (PoC)

SpotPaltalk 1.1.5 - Denial of Service (PoC)

SpotIM 2.2 - Denial of Service (PoC)

TheHive Project Cortex < 1.15.2 - Server-Side Request Forgery

jetCast Server 2.0 - Denial of Service (PoC)

9.5.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

 

Exploint

Convert Video jetAudio 8.1.7 - Denial of Service (PoC)

Lyric Maker 2.0.1.0 - Denial of Service (PoC)

Lyric Video Creator 2.1 - '.mp3' Denial of Service (PoC)

Zoho ManageEngine ADSelfService Plus 5.7 < 5702 build - Cross-Site Scripting

Oracle Weblogic Server - 'AsyncResponseService' Deserialization Remote Code Execution (Metasploit)

PostgreSQL 9.3 - COPY FROM PROGRAM Command Execution (Metasploit)

Google Chrome 72.0.3626.119 - 'FileReader' Use-After-Free (Metasploit)

Lotus Domino 8.5.3 - 'EXAMINE' Stack Buffer Overflow DEP/ASLR Bypass (NSA's EMPHASISMINE)

8.5.2019

Bugtraq

 

Malware

Ransom.MegaCortex

Phishing

 

Vulnerebility

Multiple F5 BIG-IP Products CVE-2019-6619 Denial of Service Vulnerability
2019-05-08
http://www.securityfocus.com/bid/108190

Symantec AV Engine CVE-2019-9698 Arbitrary File Deletion Vulnerability
2019-05-08
http://www.securityfocus.com/bid/108128

Cisco Firepower Threat Defense Software CVE-2019-1703 Denial of Service Vulnerability
2019-05-07
http://www.securityfocus.com/bid/108170

Jenkins Multiple Security Vulnerabilities
2019-05-07
http://www.securityfocus.com/bid/108159

Linux Kernel CVE-2018-20836 Race Condition Vulnerability
2019-05-07
http://www.securityfocus.com/bid/108196

Cisco Elastic Services Controller CVE-2019-1867 Authentication Bypass Vulnerability
2019-05-07
http://www.securityfocus.com/bid/108184

Exploint

7.5.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Jenkins Multiple Security Vulnerabilities
2019-05-07
http://www.securityfocus.com/bid/108159

Apache Karaf CVE-2019-0226 Arbitrary File Overwrite Vulnerability
2019-05-06
http://www.securityfocus.com/bid/108174

Exploint

Easy Chat Server 3.1 - 'message' Denial of Service (PoC)

Admin Express 1.2.5.485 - 'Folder Path' Local SEH Alphanumeric Encoded Buffer Overflow

Prinect Archive System 2015 Release 2.6 - Cross-Site Scripting

6.5.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

 

Exploint

iOS 12.1.3 - 'cfprefsd' Memory Corruption

NSClient++ 0.5.2.35 - Privilege Escalation

microASP (Portal+) CMS - 'pagina.phtml?explode_tree' SQL Injection

PHPads 2.0 - 'click.php3?bannerID' SQL Injection

Xitami Web Server 2.5 - Remote Buffer Overflow (SEH + Egghunter)

ReadyAPI 2.5.0 / 2.6.0 - Remote Code Execution

LG Supersign EZ CMS - Remote Code Execution (Metasploit)

5.5.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

 

Exploint

Wordpress Plugin Social Warfare < 3.5.3 - Remote Code Execution

SolarWinds DameWare Mini Remote Control 10.0 - Denial of Service

Blue Angel Software Suite - Command Execution

Windows PowerShell ISE - Remote Code Execution

Zotonic < 0.47.0 mod_admin - Cross-Site Scripting

Instagram Auto Follow - Authentication Bypass

Crestron AM/Barco wePresent WiPG/Extron ShareLink/Teq AV IT/SHARP PN-L703WA/Optoma WPS-Pro/Blackbox HD WPS/InFocus LiteShow - Remote Command Injection

2.5.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Oracle WebLogic Server Deserialization Remote Command Execution Vulnerability
2019-05-02
http://www.securityfocus.com/bid/108074

Microsoft Visual Studio 'asm' Remote Memory Corruption Vulnerability
2019-05-02
http://www.securityfocus.com/bid/108122

Eclipse OpenJ9 CVE-2019-10245 Denial of Service Vulnerability
2019-05-01
http://www.securityfocus.com/bid/108094

Exploint

Ruby On Rails - DoubleTap Development Mode secret_key_base Remote Code Execution (Metasploit)

1.5.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Eclipse OpenJ9 CVE-2019-10245 Denial of Service Vulnerability
2019-05-01
http://www.securityfocus.com/bid/108094

Linux Kernel CVE-2019-11599 Local Race Condition Vulnerability
2019-05-01
http://www.securityfocus.com/bid/108113

Microsoft Visual Studio 'asm' Remote Memory Corruption Vulnerability
2019-04-30
http://www.securityfocus.com/bid/108122

Philips Tasy EMR CVE-2019-6562 Cross Site Scripting Vulnerability
2019-04-30
http://www.securityfocus.com/bid/108120

Rockwell Automation ControlLogix ICSA-19-120-01 Multiple Buffer Overflow Vulnerabilities
2019-04-30
http://www.securityfocus.com/bid/108118

ImageMagick CVE-2019-10131 Denial of Service Vulnerability
2019-04-30
http://www.securityfocus.com/bid/108117

Citrix SD-WAN CVE-2019-11550 Information Disclosure Vulnerability
2019-04-30
http://www.securityfocus.com/bid/108114

Exploint

CentOS Web Panel 0.9.8.793 (Free) / v0.9.8.753 (Pro) / 0.9.8.807 (Pro) - Domain Field (Add DNS Zone) Cross-Site Scripting

Pimcore < 5.71 - Unserialize RCE (Metasploit)

AIS logistics ESEL-Server - Unauth SQL Injection RCE (Metasploit)

Linux - Missing Locking Between ELF coredump code and userfaultfd VMA Modification

Oracle Weblogic 10.3.6.0.0 / 12.1.3.0.0 - Remote Code Execution

DeviceViewer 3.12.0.1 - 'user' SEH Overflow

SpotAuditor 5.2.6 - 'Name' Denial of Service (PoC)

Agent Tesla Botnet - Information Disclosure

Hyvikk Fleet Manager - Shell Upload

Moodle 3.6.3 - 'Install Plugin' Remote Command Execution (Metasploit)

Joomla! Component JiFile 2.3.1 - Arbitrary File Download

Domoticz 4.10577 - Unauthenticated Remote Command Execution

Spring Cloud Config 2.1.x - Path Traversal (Metasploit)

HumHub 1.3.12 - Cross-Site Scripting

Intelbras IWR 3000N 1.5.0 - Cross-Site Request Forgery

29.4.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Oracle WebLogic Server Deserialization Remote Command Execution Vulnerability
2019-04-29
http://www.securityfocus.com/bid/108074

Exploint

 

28.4.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Ghostscript Multiple Security Bypass Vulnerabilities
2019-04-26
http://www.securityfocus.com/bid/105122

Ghostscript CVE-2018-18284 Security Bypass Vulnerability
2019-04-26
http://www.securityfocus.com/bid/107451

Ghostscript 'shading_param' Remote Code Execution Vulnerability
2019-04-26
http://www.securityfocus.com/bid/105178

Atlassian Confluence Server and Confluence Data Center Directory Traversal Vulnerability
2019-04-26
http://www.securityfocus.com/bid/108067

Exploint

systemd - DynamicUser can Create setuid Binaries when Assisted by Another Process

Apache Pluto 3.0.0 / 3.0.1 - Persistent Cross-Site Scripting

NSauditor 3.1.2.0 - 'Name' Denial of Service (PoC)

NSauditor 3.1.2.0 - 'Community' Denial of Service (PoC)

26.4.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Ghostscript Multiple Security Bypass Vulnerabilities
2019-04-26
http://www.securityfocus.com/bid/105122

Ghostscript CVE-2018-18284 Security Bypass Vulnerability
2019-04-26
http://www.securityfocus.com/bid/107451

Ghostscript 'shading_param' Remote Code Execution Vulnerability
2019-04-26
http://www.securityfocus.com/bid/105178

Atlassian Confluence Server and Confluence Data Center Directory Traversal Vulnerability
2019-04-26
http://www.securityfocus.com/bid/108067

Exploint

RARLAB WinRAR 5.61 - ACE Format Input Validation Remote Code Execution (Metasploit)

Lavavo CD Ripper 4.20 - 'License Activation Name' Buffer Overflow (SEH)

AnMing MP3 CD Burner 2.0 - Denial of Service (PoC)

osTicket 1.11 - Cross-Site Scripting / Local File Inclusion

JioFi 4G M2S 1.0.2 - Denial of Service

JioFi 4G M2S 1.0.2 - 'mask' Cross-Site Scripting

Backup Key Recovery 2.2.4 - Denial of Service (PoC)

HeidiSQL 10.1.0.5464 - Denial of Service (PoC)

25.4.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Atlassian Confluence Server and Confluence Data Center Directory Traversal Vulnerability
2019-04-25
http://www.securityfocus.com/bid/108067

Linux Kernel 'perf_event_open()' Function Local Information Disclosure Vulnerability
2019-04-24
http://www.securityfocus.com/bid/89937

GraphicsMagick CVE-2019-11505 Heap Buffer Overflow Vulnerability
2019-04-24
http://www.securityfocus.com/bid/108063

TIBCO ActiveMatrix BPM CVE-2019-8995 Open Redirection Vulnerability
2019-04-24
http://www.securityfocus.com/bid/108062

Exploint

JioFi 4G M2S 1.0.2 - Denial of Service

JioFi 4G M2S 1.0.2 - 'mask' Cross-Site Scripting

Backup Key Recovery 2.2.4 - Denial of Service (PoC)

HeidiSQL 10.1.0.5464 - Denial of Service (PoC)

Google Chrome 72.0.3626.121 / 74.0.3725.0 - 'NewFixedDoubleArray' Integer Overflow

VirtualBox 6.0.4 r128413 - COM RPC Interface Code Injection Host Privilege Escalation

24.4.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Linux Kernel 'perf_event_open()' Function Local Information Disclosure Vulnerability
2019-04-24
http://www.securityfocus.com/bid/89937

Palo Alto Networks Global Protect Client CVE-2019-1573 Local Information Disclosure Vulnerability
2019-04-23
http://www.securityfocus.com/bid/107868

Linux Kernel CVE-2019-11487 Multiple Denial of Service Vulnerabilities
2019-04-23
http://www.securityfocus.com/bid/108054

Fujifilm FCR Capsula X/Carbon X Denial of Service and Access Bypass Vulnerabilities
2019-04-23
http://www.securityfocus.com/bid/108052

Apache Zeppelin CVE-2017-12619 Session Fixation Vulnerability
2019-04-23
http://www.securityfocus.com/bid/108050

Rockwell Automation MicroLogix 1400 and CompactLogix 5370 Controllers Open Redirection Vulnerability
2019-04-23
http://www.securityfocus.com/bid/108049

Google Chrome Prior to 74.0.3729.108 Multiple Security Vulnerabilities
2019-04-23
http://www.securityfocus.com/bid/108048

Apache Zeppelin Security Bypass and HTML Injection Vulnerabilities
2019-04-23
http://www.securityfocus.com/bid/108047

Apache Qpid Proton CVE-2019-0223 Man in the Middle Security Bypass Vulnerability
2019-04-23
http://www.securityfocus.com/bid/108044

Symantec Endpoint Protection CVE-2018-12244 Security Bypass Vulnerability
2019-04-23
http://www.securityfocus.com/bid/107999

Multiple Symantec Products CVE-2018-18369 DLL Loading Local Privilege Escalation Vulnerability
2019-04-23
http://www.securityfocus.com/bid/107997

Symantec Endpoint Protection Manager CVE-2018-18367 Local Privilege Escalation Vulnerability
2019-04-23
http://www.securityfocus.com/bid/107996

Multiple Symantec Products CVE-2018-18366 Local Information Disclosure Vulnerability
2019-04-23
http://www.securityfocus.com/bid/107994

Exploint

VirtualBox 6.0.4 r128413 - COM RPC Interface Code Injection Host Privilege Escalation

23.4.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Palo Alto Networks Global Protect Client CVE-2019-1573 Local Information Disclosure Vulnerability
2019-04-23
http://www.securityfocus.com/bid/107868

PHP Multiple Heap Buffer Overflow Vulnerabilities
2019-04-22
http://www.securityfocus.com/bid/107794

Exploint

Linux - 'page->_refcount' Overflow via FUSE

Linux - Missing Locking in Siemens R3964 Line Discipline Race Condition

systemd - Lack of Seat Verification in PAM Module Permits Spoofing Active Session to polkit

Ross Video DashBoard 8.5.1 - Insecure Permissions

22.4.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

PHP Multiple Heap Buffer Overflow Vulnerabilities
2019-04-22
http://www.securityfocus.com/bid/107794

Exploint

UliCMS 2019.2 / 2019.1 - Multiple Cross-Site Scripting

ManageEngine Applications Manager 14.0 - Authentication Bypass / Remote Command Execution (Metasploit)

Msvod 10 - Cross-Site Request Forgery (Change User Information)

74CMS 5.0.1 - Cross-Site Request Forgery (Add New Admin User)

LabF nfsAxe 3.7 Ping Client - 'Host IP' Buffer Overflow (Direct Ret)

Google Chrome 73.0.3683.103 V8 JavaScript Engine - Out-of-Memory in Invalid Table Size Denial of Service (PoC)

WordPress Plugin Contact Form Builder 1.0.67 - Cross-Site Request Forgery / Local File Inclusion

QNAP myQNAPcloud Connect 1.3.4.0317 - 'Username/Password' Denial of Service

Ease Audio Converter 5.30 - '.mp4' Denial of Service (PoC)

20.4.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

 

Exploint

Atlassian Confluence Widget Connector Macro - Velocity Template Injection (Metasploit)

SystemTap 1.3 - MODPROBE_OPTIONS Privilege Escalation (Metasploit)

Oracle Business Intelligence / XML Publisher 11.1.1.9.0 / 12.2.1.3.0 / 12.2.1.4.0 - XML External Entity Injection

Oracle Business Intelligence 11.1.1.9.0 / 12.2.1.3.0 / 12.2.1.4.0 - Directory Traversal

19.4.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

OpenSSH CVE-2018-20685 Access Bypass Vulnerability
2019-04-18
http://www.securityfocus.com/bid/106531

Microsoft Windows Win32k CVE-2019-0859 Local Privilege Escalation Vulnerability
2019-04-18
http://www.securityfocus.com/bid/107763

Spring Security and Spring Framework CVE-2018-1258 Authorization Bypass Vulnerability
2019-04-18
http://www.securityfocus.com/bid/104222

FreeType 2 CVE-2017-8105 Out of Bounds Write Heap Buffer Overflow Vulnerability
2019-04-18
http://www.securityfocus.com/bid/99093

FreeType 2 CVE-2017-8287 Out of Bounds Write Heap Buffer Overflow Vulnerability
2019-04-18
http://www.securityfocus.com/bid/99091

Apache Tika CVE-2018-11761 XML External Entity Denial of Service Vulnerability
2019-04-18
http://www.securityfocus.com/bid/105514

cURL/libcURL Multiple Buffer Overflow Vulnerabilities
2019-04-18
http://www.securityfocus.com/bid/106950

Apache Batik CVE-2018-8013 Information Disclosure Vulnerability
2019-04-18
http://www.securityfocus.com/bid/104252

Apache Tomcat CVE-2018-1305 Security Bypass Vulnerability
2019-04-18
http://www.securityfocus.com/bid/103144

SLF4J 'EventData' Constructor Remote Code Execution Vulnerability
2019-04-18
http://www.securityfocus.com/bid/103737

Spring Framework CVE-2018-15756 Denial-Of-Service Vulnerability
2019-04-18
http://www.securityfocus.com/bid/105703

Apache ActiveMQ CVE-2018-11775 Man in the Middle Security Bypass Vulnerability
2019-04-18
http://www.securityfocus.com/bid/105335

Cisco IOS Software CVE-2018-0161 Denial of Service Vulnerability
2019-04-18
http://www.securityfocus.com/bid/103573

IBM Java SDK CVE-2018-1656 Directory Traversal Vulnerability
2019-04-18
http://www.securityfocus.com/bid/105118

Apache Log4j CVE-2017-5645 Remote Code Execution Vulnerability
2019-04-18
http://www.securityfocus.com/bid/97702

JQuery CVE-2015-9251 Cross Site Scripting Vulnerability
2019-04-18
http://www.securityfocus.com/bid/105658

FasterXML Jackson-databind CVE-2018-14718 Remote Code Execution Vulnerability
2019-04-18
http://www.securityfocus.com/bid/106601

Exploint

LibreOffice < 6.0.7 / 6.1.3 - Macro Code Execution (Metasploit)

Netwide Assembler (NASM) 2.14rc15 - NULL Pointer Dereference (PoC)

ManageEngine Applications Manager 11.0 < 14.0 - SQL Injection / Remote Code Execution (Metasploit)

Evernote 7.9 - Code Execution via Path Traversal

18.4.2019

Bugtraq

 

Malware

Infostealer.Scranos

Phishing

 

Vulnerebility

Apache Log4j CVE-2017-5645 Remote Code Execution Vulnerability
2019-04-18
http://www.securityfocus.com/bid/97702

JQuery CVE-2015-9251 Cross Site Scripting Vulnerability
2019-04-18
http://www.securityfocus.com/bid/105658

FasterXML Jackson-databind CVE-2018-14718 Remote Code Execution Vulnerability
2019-04-18
http://www.securityfocus.com/bid/106601

Exploint

Oracle Java Runtime Environment - Heap Corruption During TTF font Rendering in GlyphIterator::setCurrGlyphID

Oracle Java Runtime Environment - Heap Corruption During TTF font Rendering in sc_FindExtrema4

17.4.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

FasterXML Jackson-databind CVE-2018-12023 Remote Code Execution Vulnerability
2019-04-17
http://www.securityfocus.com/bid/105659

Oracle Primavera Unifier Multiple Security Vulnerabilities
2019-04-17
http://www.securityfocus.com/bid/104823

Apache Tomcat CVE-2018-11784 Open Redirection Vulnerability
2019-04-17
http://www.securityfocus.com/bid/105524

Apache HTTP Server CVE-2018-11763 Denial of Service Vulnerability
2019-04-17
http://www.securityfocus.com/bid/105414

Bouncy Castle CVE-2018-1000180 Security Weakness
2019-04-17
http://www.securityfocus.com/bid/106567

OpenSSL CVE-2018-0734 Side Channel Attack Information Disclosure Vulnerability
2019-04-17
http://www.securityfocus.com/bid/105758

Novell NetIQ Sentinel CVE-2016-1000031 Remote Code Execution Vulnerability
2019-04-17
http://www.securityfocus.com/bid/93604

Oracle Enterprise Manager Ops Center CVE-2016-4000 Remote Security Vulnerability
2019-04-17
http://www.securityfocus.com/bid/105647

Multiple TIBCO Products CVE-2017-5533 Information Disclosure Vulnerability
2019-04-17
http://www.securityfocus.com/bid/101878

Multiple CPU Hardware CVE-2017-5754 Information Disclosure Vulnerability
2019-04-17
http://www.securityfocus.com/bid/102378

Pivotal Spring Integration CVE-2019-3772 XML External Entity Injection Vulnerability
2019-04-17
http://www.securityfocus.com/bid/106749

Apache Groovy CVE-2015-3253 Remote Code Execution Vulnerability
2019-04-17
http://www.securityfocus.com/bid/75919

Multiple Oracle Products CVE-2016-0635 Remote Security Vulnerability
2019-04-17
http://www.securityfocus.com/bid/91869

Apache Commons FileUpload CVE-2016-3092 Denial Of Service Vulnerability
2019-04-17
http://www.securityfocus.com/bid/91453

Apache Xalan-Java Library CVE-2014-0107 Security Bypass Vulnerability
2019-04-17
http://www.securityfocus.com/bid/66397

Apache Derby CVE-2015-1832 XML External Entity Information Disclosure Vulnerability
2019-04-17
http://www.securityfocus.com/bid/93132

JGroups CVE-2016-2141 Authorization Bypass Vulnerability
2019-04-17
http://www.securityfocus.com/bid/91481

Apache Struts ClassLoader Manipulation CVE-2014-0114 Security Bypass Vulnerability
2019-04-17
http://www.securityfocus.com/bid/67121

OpenSSL CVE-2019-1559 Information Disclosure Vulnerability
2019-04-17
http://www.securityfocus.com/bid/107174

Multiple CPU Hardware CVE-2017-5753 Information Disclosure Vulnerability
2019-04-17
http://www.securityfocus.com/bid/102371

Mozilla Network Security Services CVE-2018-12404 Information Disclosure Vulnerability
2019-04-17
http://www.securityfocus.com/bid/107260

Linux Kernel CVE-2017-0861 Local Privilege Escalation Vulnerability
2019-04-17
http://www.securityfocus.com/bid/102329

OpenSSL CVE-2018-0732 Denial of Service Vulnerability
2019-04-17
http://www.securityfocus.com/bid/104442

Apache Tomcat CVE-2017-5664 Security Bypass Vulnerability
2019-04-17
http://www.securityfocus.com/bid/98888

systemd-journald CVE-2018-16864 Stack-Based Buffer Overflow Vulnerability
2019-04-17
http://www.securityfocus.com/bid/106523

Apache Struts CVE-2016-1181 Remote Code Execution Vulnerability
2019-04-17
http://www.securityfocus.com/bid/91068

GNU glibc CVE-2018-11236 Stack Buffer Overflow Vulnerability
2019-04-17
http://www.securityfocus.com/bid/104255

Oracle Database Server Multiple Local Security Vulnerabilities
2019-04-17
http://www.securityfocus.com/bid/107940

Redis CVE-2018-11219 Integer Overflow Vulnerability
2019-04-17
http://www.securityfocus.com/bid/104552

FasterXML Jackson-databind CVE-2018-7489 Incomplete Fix Remote Code Execution Vulnerability
2019-04-17
http://www.securityfocus.com/bid/103203

Exploint

DHCP Server 2.5.2 - Denial of Service (PoC)

ASUS HG100 - Denial of Service

MailCarrier 2.51 - POP3 'RETR' SEH Buffer Overflow

16.4.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Action View CVE-2019-5418 Information Disclosure Vulnerability
2019-04-15
http://www.securityfocus.com/bid/107409

Cisco NX-OS CVE-2019-1601 Unauthorized File Access Vulnerability
2019-04-15
http://www.securityfocus.com/bid/107404

Google Chrome Prior to 66.0.3359.117 Multiple Security Vulnerabilities
2019-04-15
http://www.securityfocus.com/bid/103917

Exploint

Microsoft Windows 10 1809 - LUAFV PostLuafvPostReadWrite SECTION_OBJECT_POINTERS Race Condition Privilege Escalation

Microsoft Windows 10 1809 - LUAFV Delayed Virtualization Cache Manager Poisoning Privilege Escalation

Microsoft Windows 10 1809 - LUAFV NtSetCachedSigningLevel Device Guard Bypass

Microsoft Windows 10 1809 - LUAFV LuafvCopyShortName Arbitrary Short Name Privilege Escalation

Microsoft Windows 10 1809 - LUAFV Delayed Virtualization Cross Process Handle Duplication Privilege Escalation

Microsoft Windows 10 1809 - LUAFV Delayed Virtualization MAXIMUM_ACCESS DesiredAccess Privilege Escalation

Microsoft Windows 10 1809 / 1709 - CSRSS SxSSrv Cached Manifest Privilege Escalation

AdminExpress 1.2.5 - 'Folder Path' Denial of Service (PoC)

Joomla Core 1.5.0 - 3.9.4 - Directory Traversal / Authenticated Arbitrary File Deletion

PCHelpWare V2 1.0.0.5 - 'Group' Denial of Service (PoC)

PCHelpWare V2 1.0.0.5 - 'SC' Denial of Service (PoC)

Zoho ManageEngine ADManager Plus 6.6 (Build < 6659) - Privilege Escalation

Zyxel ZyWall 310 / ZyWall 110 / USG1900 / ATP500 / USG40 - Login Page Cross-Site Scripting

15.4.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Multiple Westermo Routers Multiple Security Vulnerabilities
2019-04-15
http://www.securityfocus.com/bid/100470

Qualcomm Closed-Source Components Multiple Unspecified Vulnerabilities
2019-04-15
http://www.securityfocus.com/bid/106128

Splunk Enterprise HTML Injection Vulnerability
2019-04-15
http://www.securityfocus.com/bid/97286

QNAP QTAP Qualcomm components Multiple Unspecified Security Vulnerabilities
2019-04-15
http://www.securityfocus.com/bid/97072

Oracle WebCenter Sites CVE-2017-3598 Remote Security Vulnerability
2019-04-15
http://www.securityfocus.com/bid/97905

Apple iOS/macOS/tvOS/watchOS Buffer Overflow Vulnerability
2019-04-15
http://www.securityfocus.com/bid/95731

Xen CVE-2017-17045 Privilege Escalation Vulnerability
2019-04-15
http://www.securityfocus.com/bid/102013

Dovecot CVE-2019-7524 Stack Buffer Overflow Vulnerability
2019-04-15
http://www.securityfocus.com/bid/107672

Exploint

Cisco RV130W Routers - Management Interface Remote Command Execution (Metasploit)

UltraVNC Launcher 1.2.2.4 - 'Path' Denial of Service (PoC)

UltraVNC Viewer 1.2.2.4 - 'VNC Server' Denial of Service (PoC)

MailCarrier 2.51 - POP3 'TOP' SEH Buffer Overflow

MailCarrier 2.51 - POP3 'LIST' SEH Buffer Overflow

MailCarrier 2.51 - POP3 'USER' Buffer Overflow

CuteNews 2.1.2 - 'avatar' Remote Code Execution (Metasploit)

RemoteMouse 3.008 - Arbitrary Remote Command Execution

MailCarrier 2.51 - 'RCPT TO' Buffer Overflow

DirectAdmin 1.561 - Multiple Vulnerabilities

14.4.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Citrix XenServer Multiple Security Vulnerabilities
2019-04-12
http://www.securityfocus.com/bid/102129

Xen CVE-2017-15592 Denial of Service Vulnerability
2019-04-12
http://www.securityfocus.com/bid/101513

IBM BigFix Platform Multiple Security Vulnerabilities
2019-04-12
http://www.securityfocus.com/bid/101571

Tidy CVE-2017-13692 Denial of Service Vulnerability
2019-04-12
http://www.securityfocus.com/bid/100506

SAP NetWeaver Knowledge Management XMLForms Unspecified Cross Site Scripting Vulnerability
2019-04-12
http://www.securityfocus.com/bid/101826

RETIRED: Oracle Retail Xstore Point of Service CVE-2017-10427 Remote Security Vulnerability
2019-04-12
http://www.securityfocus.com/bid/101388

RETIRED: Oracle Retail Back Office CVE-2017-10423 Remote Security Vulnerability
2019-04-12
http://www.securityfocus.com/bid/101380

RETIRED: Oracle BI Publisher CVE-2017-10034 Remote Security Vulnerability
2019-04-12
http://www.securityfocus.com/bid/101405

WordPress Mobile App Builder By Wappress Plugin Arbitrary File Upload Vulnerability
2019-04-12
http://www.securityfocus.com/bid/96905

Google Android Framework Multiple Privilege Escalation Vulnerabilities
2019-04-12
http://www.securityfocus.com/bid/102131

RETIRED: Google Android NFC CVE-2017-0481 Remote Privilege Escalation Vulnerability
2019-04-12
http://www.securityfocus.com/bid/96765

SAP Single Sign On Denial of Service Vulnerability
2019-04-12
http://www.securityfocus.com/bid/95363

GraphicsMagick CVE-2016-7800 Heap Buffer Overflow Vulnerability
2019-04-12
http://www.securityfocus.com/bid/93262

RETIRED: GraphicsMagick CVE-2016-7800 Remote Integer Underflow Vulnerability
2019-04-12
http://www.securityfocus.com/bid/96135

Sauter NovaWeb Web HMI CVE-2016-10224 Authentication Bypass Vulnerability
2019-04-12
http://www.securityfocus.com/bid/94782

Apple iOS Prior to 10 Multiple Security Vulnerabilities
2019-04-12
http://www.securityfocus.com/bid/92932

Katello CVE-2016-9595 Local Code Execution Vulnerability
2019-04-12
http://www.securityfocus.com/bid/95080

Google Android Multiple Qualcomm Components Multiple Security Vulnerabilities
2019-04-12
http://www.securityfocus.com/bid/102073

Apple Safari APPLE-SA-2016-03-21-6 Multiple Security Vulnerabilities
2019-04-12
http://www.securityfocus.com/bid/85055

ImageMagick CVE-2016-10054 Buffer Overflow Vulnerability
2019-04-12
http://www.securityfocus.com/bid/95191

IBM Sametime Proxy Server Multiple Security Vulnerabilities
2019-04-12
http://www.securityfocus.com/bid/100572

Cacti Multiple SQL Injection Vulnerabilities
2019-04-12
http://www.securityfocus.com/bid/75972

Drupal Wishlist Module Cross Site Request Forgery and Cross Site Scripting Vulnerabilities
2019-04-12
http://www.securityfocus.com/bid/72114

RETIRED: ManageEngine ADManager Plus CVE-2015-1026 Multiple Cross Site Scripting Vulnerabilities
2019-04-12
http://www.securityfocus.com/bid/73056

Cisco Unified Computing System CVE-2015-6415 Denial of Service Vulnerability
2019-04-12
http://www.securityfocus.com/bid/85711

RETIRED: Ida CVE-2014-9458 Remote Security Vulnerability
2019-04-12
http://www.securityfocus.com/bid/87981

RETIRED: Notepad%2B%2B CVE-2014-9456 Remote Security Vulnerability
2019-04-12
http://www.securityfocus.com/bid/88191

Schneider Electric ETG3000 FactoryCast HMI Gateway Authentication Bypass Vulnerability
2019-04-12
http://www.securityfocus.com/bid/72258

RETIRED: Tsxetg3010 CVE-2014-9198 Remote Security Vulnerability
2019-04-12
http://www.securityfocus.com/bid/77765

Apple Mac OS X Prior to 10.10.2 Multiple Security Vulnerabilities
2019-04-12
http://www.securityfocus.com/bid/72328

Exploint

 

12.4.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

RETIRED: LG On-Screen Phone CVE-2014-8757 Security Bypass Vulnerability
2019-04-12
http://www.securityfocus.com/bid/72544

RETIRED: Uberfire CVE-2014-8114 Remote Security Vulnerability
2019-04-12
http://www.securityfocus.com/bid/88199

RETIRED: GE Healthcare Centricity PACS Workstation Hardcoded Password Security Bypass Vulnerability
2019-04-12
http://www.securityfocus.com/bid/76169

RETIRED: Hancom Office 2010 SE CVE-2013-7420 Remote Security Vulnerability
2019-04-12
http://www.securityfocus.com/bid/88211

F5 BIG-IP APM CVE-2017-6139 Information Disclosure Vulnerability
2019-04-12
http://www.securityfocus.com/bid/106186

Multiple F5 Networks Products CVE-2013-6024 Local Information Disclosure Vulnerability
2019-04-12
http://www.securityfocus.com/bid/65422

Palo Alto Networks Global Protect Client CVE-2019-1573 Local Information Disclosure Vulnerability
2019-04-12
http://www.securityfocus.com/bid/107868

Oracle April 2019 Critical Patch Update Multiple Vulnerabilities
2019-04-12
http://www.securityfocus.com/bid/107875

Exploint

Zimbra Collaboration - Autodiscover Servlet XXE and ProxyServlet SSRF (Metasploit)

Microsoft Windows - Contact File Format Arbitary Code Execution (Metasploit)

ATutor < 2.2.4 - 'file_manager' Remote Code Execution (Metasploit)

Microsoft Internet Explorer 11 - XML External Entity Injection

CyberArk EPM 10.2.1.603 - Security Restrictions Bypass

11.4.2019

Bugtraq

 

Malware

VBS.Rosekernel

Backdoor.Darkteq

Phishing

Microsft Hotmail

11th April 2019

Microsoft Outlook Deactivation
Notification

Vulnerebility

IBM Spectrum LSF CVE-2018-1724 Local Security Bypass Vulnerability
2019-04-11
http://www.securityfocus.com/bid/106642

IBM QRadar SIEM CVE-2019-4210 Authentication Bypass Vulnerability
2019-04-11
http://www.securityfocus.com/bid/107859

GNU wget CVE-2019-5953 Remote Buffer Overflow Vulnerability
2019-04-10
http://www.securityfocus.com/bid/107734

Quagga CVE-2018-5379 Remote Code Execution Vulnerability
2019-04-10
http://www.securityfocus.com/bid/103105

cURL/libcURL Multiple Buffer Overflow Vulnerabilities
2019-04-10
http://www.securityfocus.com/bid/106950

Exploint

D-Link DI-524 V2.06RU - Multiple Cross-Site Scripting

10.4.2019

Bugtraq

 

Malware

Exp.CVE-2019-0803

Exp.CVE-2019-0859

Phishing

 

Vulnerebility

GNU wget CVE-2019-5953 Remote Buffer Overflow Vulnerability
2019-04-10
http://www.securityfocus.com/bid/107734

Quagga CVE-2018-5379 Remote Code Execution Vulnerability
2019-04-10
http://www.securityfocus.com/bid/103105

cURL/libcURL Multiple Buffer Overflow Vulnerabilities
2019-04-10
http://www.securityfocus.com/bid/106950

cURL/libcURL CVE-2018-16890 Heap Buffer Overflow Vulnerability
2019-04-10
http://www.securityfocus.com/bid/106947

Multiple Siemens Products CVE-2017-12741 Denial of Service Vulnerability
2019-04-10
http://www.securityfocus.com/bid/101964

Microsoft Azure DevOps Server and Team Foundation Server Cross-site Scripting Vulnerability
2019-04-09
http://www.securityfocus.com/bid/107752

Exploint

FTPShell Server 6.83 - 'Virtual Path Mapping' Local Buffer

FTPShell Server 6.83 - 'Account name to ban' Local Buffer

Dell KACE Systems Management Appliance (K1000) 6.4.120756 - Unauthenticated Remote Code Execution

Microsoft Windows - AppX Deployment Service Privilege Escalation

Apache Axis 1.4 - Remote Code Execution

9.4.2019

Bugtraq

 

Malware

Infostealer.Glitchpos

Phishing

 

Vulnerebility

Adobe Acrobat and Reader APSB19-17 Multiple Heap Buffer Overflow Vulnerabilities
2019-04-09
http://www.securityfocus.com/bid/107805

SAP Netweaver ABAP CVE-2019-0265 XML External Entity Injection Vulnerability
2019-04-09
http://www.securityfocus.com/bid/106972

SAP Business Client Unspecified Security Vulnerability
2019-04-09
http://www.securityfocus.com/bid/104436

Apache HTTP Server CVE-2019-0211 Local Privilege Escalation Vulnerability
2019-04-09
http://www.securityfocus.com/bid/107666

Adobe Acrobat and Reader Out-of-Bounds Read Multiple Information Disclosure Vulnerabilities
2019-04-09
http://www.securityfocus.com/bid/107815

Adobe Acrobat and Reader Out-Of-Bounds Write Multiple Arbitrary Code Execution Vulnerabilities
2019-04-09
http://www.securityfocus.com/bid/107812

Adobe Acrobat and Reader APSB19-17 Multiple Arbitrary Code Execution Vulnerabilities
2019-04-09
http://www.securityfocus.com/bid/107811

SAP NetWeaver Process Integration CVE-2019-0278 Information Disclosure Vulnerability
2019-04-09
http://www.securityfocus.com/bid/107807

WordPress Wordfence Plugin Unspecified Cross Site Scripting Vulnerability
2019-04-09
http://www.securityfocus.com/bid/107804

SAP NetWeaver Process Integration CVE-2019-0282 Information Disclosure Vulnerability
2019-04-09
http://www.securityfocus.com/bid/107801

SAP HANA CVE-2019-0284 XML External Entity Injection Vulnerability
2019-04-09
http://www.securityfocus.com/bid/107800

PHP Multiple Heap Buffer Overflow Vulnerabilities
2019-04-08
http://www.securityfocus.com/bid/107794

Exploint

PHP 7.2 - 'imagecolormatch()' Out of Band Heap Write

Ashop Shopping Cart Software - 'bannedcustomers.php?blacklistitemid' SQL Injection

TP-LINK TL-WR940N / TL-WR941ND - Buffer Overflow

8.4.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

PHP Multiple Heap Buffer Overflow Vulnerabilities
2019-04-08
http://www.securityfocus.com/bid/107794

Symantec Endpoint Encryption CVE-2019-9694 Local Privilege Escalation Vulnerability
2019-04-08
http://www.securityfocus.com/bid/107653

Exploint

Apache 2.4.17 < 2.4.38 - 'apache2ctl graceful' 'logrotate' Local Privilege Escalation

QNAP Netatalk < 3.1.12 - Authentication Bypass

ManageEngine ServiceDesk Plus 9.3 - User Enumeration

Download Accelerator Plus (DAP) 10.0.6.0 - SEH Buffer Overflow

WordPress Plugin Limit Login Attempts Reloaded 2.7.4 - Login Limit Bypass

Tradebox CryptoCurrency - 'symbol' SQL Injection

River Past Cam Do 3.7.6 - 'Activation Code' Local Buffer Overflow

CentOS Web Panel 0.9.8.793 (Free) / 0.9.8.753 (Pro) - Cross-Site Scripting

AllPlayer 7.4 - SEH Buffer Overflow (Unicode)

SaLICru -SLC-20-cube3(5) - HTML Injection

ShoreTel Connect ONSITE < 19.49.1500.0 - Multiple Vulnerabilities

FlexHEX 2.71 - SEH Buffer Overflow (Unicode)

Bolt CMS 3.6.6 - Cross-Site Request Forgery / Remote Code Execution

Jobgator - 'experience' SQL Injection

5.4.2019

Bugtraq

 

Malware

Android.RemoteCode.152.origin 

Android.RemoteCode.127.origin

Trojan.DownLoad4.11892

Android.HiddenAds.1008

Backdoor.Vexdoor

Phishing

Google

4th April 2019

SEO+SMO PROPOSAL

Vulnerebility

Cisco IOS and IOS XE Software CVE-2018-15373 Denial of Service Vulnerability
2019-04-05
http://www.securityfocus.com/bid/105413

Cisco IOS Software CVE-2018-0473 Denial of Service Vulnerability
2019-04-05
http://www.securityfocus.com/bid/105427

Cisco IOS XE Software CVE-2018-0470 Denial of Service Vulnerability
2019-04-05
http://www.securityfocus.com/bid/105397

Cisco IOS and IOS XE Software CVE-2018-0466 Denial of Service Vulnerability
2019-04-05
http://www.securityfocus.com/bid/105403

Multiple Cisco Products CVE-2018-0472 Denial Of Service Vulnerability
2019-04-05
http://www.securityfocus.com/bid/105418

Google Android Qualcomm Components Multiple Security Vulnerabilities
2019-04-05
http://www.securityfocus.com/bid/105872

Exploint

 

4.4.2019

Bugtraq

 

Malware

W32.Beapy

Phishing

 

Vulnerebility

 

Exploint

FreeSMS 2.1.2 - SQL Injection (Authentication Bypass)

AIDA64 Engineer 5.99.4900 - 'Load from file' Field Buffer Overflow (SEH)

Magic ISO Maker 5.5(build 281) - 'Serial Code' Denial of Service (PoC)

Cisco RV320 and RV325 - Unauthenticated Remote Code Execution (Metasploit)

Google Chrome 72.0.3626.96 / 74.0.3702.0 - 'JSPromise::TriggerPromiseReactions' Type Confusion

Google Chrome 73.0.3683.39 / Chromium 74.0.3712.0 - 'ReadableStream' Internal Object Leak Type Confusion

Google Chrome 72.0.3626.81 - 'V8TrustedTypePolicyOptions::ToImpl' Type Confusion

WebKitGTK+ - 'ThreadedCompositor' Race Condition

WebKit JavaScriptCore - CodeBlock Dangling Watchpoints Use-After-Free

WebKit JavaScriptCore - Out-Of-Bounds Access in FTL JIT due to LICM Moving Array Access Before the Bounds Check

iOS < 12.2 / macOS < 10.14.4 XNU - pidversion Increment During execve is Unsafe

WebKit JavaScriptCore - 'createRegExpMatchesArray' Type Confusion

SpiderMonkey - IonMonkey Compiled Code Fails to Update Inferred Property Types (Type Confusion)

PhreeBooks ERP 5.2.3 - Remote Command Execution

PhreeBooks ERP 5.2.3 - Arbitrary File Upload

Ashop Shopping Cart Software - SQL Injection

Clinic Pro v4 - 'month' SQL Injection

TeemIp IPAM < 2.4.0 - 'new_config' Command Injection (Metasploit)

3.4.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Xen HLE Constructs Denial of Service Vulnerability
2019-04-03
http://www.securityfocus.com/bid/105954

Xen Multiple Privilege Escalation and Denial of Service Vulnerabilities
2019-04-03
http://www.securityfocus.com/bid/106182

Citrix XenServer Multiple Security Vulnerabilities
2019-04-03
http://www.securityfocus.com/bid/102129

Xen CVE-2017-17044 Denial of Service Vulnerability
2019-04-03
http://www.securityfocus.com/bid/102008

Drupal Core SA-CORE-2019-004 Cross Site Scripting Vulnerability
2019-04-03
http://www.securityfocus.com/bid/107497

Siemens SCALANCE X switches CVE-2019-6569 Security Weakness
2019-04-02
http://www.securityfocus.com/bid/107465

Fortinet FortiClient CVE-2019-5585 Access Bypass Vulnerability
2019-04-02
http://www.securityfocus.com/bid/107693

Advantech WebAccess/SCADA ICSA-19-092-01 Multiple Security Vulnerabilities
2019-04-02
http://www.securityfocus.com/bid/107675

Exploint

PhreeBooks ERP 5.2.3 - Arbitrary File Upload

Ashop Shopping Cart Software - SQL Injection

Clinic Pro v4 - 'month' SQL Injection

TeemIp IPAM < 2.4.0 - 'new_config' Command Injection (Metasploit)

iScripts ReserveLogic - SQL Injection

AIDA64 Business 5.99.4900 - SEH Buffer Overflow (EggHunter)

2.4.2019

Bugtraq

 

Malware

 

Phishing

Bank of America

2nd April 2019

Bank of America Alert: Unusual
debit card activity detected

Vulnerebility

Siemens SCALANCE X switches CVE-2019-6569 Security Weakness
2019-04-02
http://www.securityfocus.com/bid/107465

Dovecot CVE-2019-7524 Stack Buffer Overflow Vulnerability
2019-04-02
http://www.securityfocus.com/bid/107672

Linux Kernel Components Multiple Security Vulnerabilities
2019-04-01
http://www.securityfocus.com/bid/106503

Linux Kernel CVE-2018-18281 Local Security Bypass Vulnerability
2019-04-01
http://www.securityfocus.com/bid/105761

Linux Kernel 'mm/vmacache.c' Local Privilege Escalation Vulnerability
2019-04-01
http://www.securityfocus.com/bid/105417

Linux Kernel 'ext4_update_inline_data()' Function Local Denial of Service Vulnerability
2019-04-01
http://www.securityfocus.com/bid/104907

Linux Kernel 'ext4_ext_drop_refs()' Function Local Denial of Service Vulnerability
2019-04-01
http://www.securityfocus.com/bid/104878

Linux Kernel 'ext4_ext_remove_space()' Function Local Denial of Service Vulnerability
2019-04-01
http://www.securityfocus.com/bid/104904

Multiple VMware Products CVE-2019-5519 Local Code Execution Vulnerability
2019-04-01
http://www.securityfocus.com/bid/107535

Multiple VMware Products CVE-2019-5518 Out of Bounds Read Write Local Code Execution Vulnerability
2019-04-01
http://www.securityfocus.com/bid/107541

Apache HTTP Server CVE-2019-0220 Remote Security Vulnerability
2019-04-01
http://www.securityfocus.com/bid/107670

Exploint

phpFileManager 1.7.8 - Local File Inclusion

Fiverr Clone Script 1.2.2 - SQL Injection / Cross-Site Scripting

AIDA64 Extreme Edition 5.99.4800 - Local SEH Buffer Overflow

CMS Made Simple < 2.2.10 - SQL Injection

LimeSurvey < 3.16 - Remote Code Execution

JioFi 4G M2S 1.0.2 - Cross-Site Request Forgery

WordPress Plugin PayPal Checkout Payment Gateway 1.6.8 - Parameter Tampering

Inout RealEstate - 'city' SQL Injection

Inout EasyRooms - SQL Injection

1.4.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Multiple VMware Products CVE-2019-5519 Local Code Execution Vulnerability
2019-04-01
http://www.securityfocus.com/bid/107535

Multiple VMware Products CVE-2019-5518 Out of Bounds Read Write Local Code Execution Vulnerability
2019-04-01
http://www.securityfocus.com/bid/107541

Linux Kernel 'create_elf_tables()' Function Local Integer Overflow Vulnerability
2019-03-29
http://www.securityfocus.com/bid/105407

Exploint

 

31.3.2019

Bugtraq

 

Malware

 

Phishing

FEDEX

30th March 2019

eskram37,0rder Confirmation

Vulnerebility

 

Exploint

 

29.3.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

 

Exploint

 

28.3.2019

Bugtraq

 

Malware

Backdoor.Tinimeti

Hacktool.Gobrut

Phishing

 

Vulnerebility

Huawei PCManager Privilege Escalation and Remote Code Execution Vulnerabilities
2019-03-27
http://www.securityfocus.com/bid/106838

Cisco IOS XE Software CVE-2019-1756 Command Injection Vulnerability
2019-03-27
http://www.securityfocus.com/bid/107598

Cisco IOS and IOS XE Software CVE-2019-1762 Local Information Disclosure Vulnerability
2019-03-27
http://www.securityfocus.com/bid/107594

Cisco IOS XE Software CVE-2019-1743 Arbitrary File Upload Vulnerability
2019-03-27
http://www.securityfocus.com/bid/107591

Cisco IOS XE Software CVE-2019-1754 Remote Privilege Escalation Vulnerability
2019-03-27
http://www.securityfocus.com/bid/107590

Cisco IOS and IOS XE Software CVE-2019-1752 Denial of Service Vulnerability
2019-03-27
http://www.securityfocus.com/bid/107589

Cisco IOS XE Software CVE-2019-1745 Local Command Injection Vulnerability
2019-03-27
http://www.securityfocus.com/bid/107588

Cisco IOS XE Software CVE-2019-1755 Command Injection Vulnerability
2019-03-27
http://www.securityfocus.com/bid/107380

Mozilla Firefox and Firefox ESR Remote Memory Corruption and Buffer Overflow Vulnerabilities
2019-03-26
http://www.securityfocus.com/bid/107548

Net-SNMP CVE-2018-18065 Remote Denial of Service Vulnerability
2019-03-26
http://www.securityfocus.com/bid/106265

Multiple Phoenix Contact Products CVE-2019-9743 Command Injection Vulnerability
2019-03-26
http://www.securityfocus.com/bid/107596

Exploint

Base64 Decoder 1.1.2 - Local Buffer Overflow (SEH Egghunter)

Jettweb PHP Hazır Rent A Car Sitesi Scripti V2 - 'arac_kategori_id' SQL Injection

BigTree 4.3.4 CMS - Multiple SQL Injection

Job Portal 3.1 - 'job_submit' SQL Injection

Microsoft Visio 2016 16.0.4738.1000 - 'Log in accounts' Denial of Service

i-doit 1.12 - 'qr.php' Cross-Site Scripting

WordPress Plugin Loco Translate 2.2.1 - Local File Inclusion

WordPress Plugin Anti-Malware Security and Brute-Force Firewall 4.18.63 - Local File Inclusion

Fat Free CRM 0.19.0 - HTML Injection

Airbnb Clone Script - Multiple SQL Injection

Thomson Reuters Concourse & Firm Central < 2.13.0097 - Directory Traversal / Local File Inclusion

27.3.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Huawei PCManager Privilege Escalation and Remote Code Execution Vulnerabilities
2019-03-27
http://www.securityfocus.com/bid/106838

Mozilla Firefox and Firefox ESR Remote Memory Corruption and Buffer Overflow Vulnerabilities
2019-03-26
http://www.securityfocus.com/bid/107548

Net-SNMP CVE-2018-18065 Remote Denial of Service Vulnerability
2019-03-26
http://www.securityfocus.com/bid/106265

PCMan's FTP Server 'CDUP' Command Buffer Overflow Vulnerability
2019-03-26
http://www.securityfocus.com/bid/107574

Symantec Norton Core CVE-2019-9695 Unspecified Arbitrary Code Execution Vulnerability
2019-03-26
http://www.securityfocus.com/bid/107478

Exploint

Jettweb Hazır Rent A Car Scripti V4 - SQL Injection

Microsoft Windows 7/2008 - 'Win32k' Denial of Service (PoC)

Spidermonkey - IonMonkey Type Inference is Incorrect for Constructors Entered via OSR

SJS Simple Job Script - SQL Injection / Cross-Site Scripting

Titan FTP Server Version 2019 Build 3505 - Directory Traversal / Local File Inclusion

XooDigital - 'p' SQL Injection

XooGallery - Multiple SQL Injection

Rukovoditel ERP & CRM 2.4.1 - 'path' Cross-Site Scripting

Jettweb Php Hazır İlan Sitesi Scripti V2 - SQL Injection

26.3.2019

Bugtraq

 

Malware

Trojan.Susafone

Phishing

 

Vulnerebility

Mozilla Firefox and Firefox ESR Remote Memory Corruption and Buffer Overflow Vulnerabilities
2019-03-26
http://www.securityfocus.com/bid/107548

Net-SNMP CVE-2018-18065 Remote Denial of Service Vulnerability
2019-03-26
http://www.securityfocus.com/bid/106265

oVirt Engine CVE-2019-3879 Security Bypass Vulnerability
2019-03-25
http://www.securityfocus.com/bid/107561

Zoho ManageEngine ServiceDesk Plus CVE-2017-9376 Multiple Local File Include Vulnerabilities
2019-03-25
http://www.securityfocus.com/bid/107558

Exploint

VMware Workstation 14.1.5 / VMware Player 15 - Host VMX Process COM Class Hijack Privilege Escalation

VMware Workstation 14.1.5 / VMware Player 15.0.2 - Host VMX Process Impersonation Hijack Privilege Escalation

Zeeways Matrimony CMS - SQL Injection

Zeeways Jobsite CMS - 'id' SQL Injection

Jettweb PHP Hazır Haber Sitesi Scripti V3 - SQL Injection

Jettweb PHP Hazır Haber Sitesi Scripti V2 - SQL Injection (Authentication Bypass)

Jettweb PHP Hazır Haber Sitesi Scripti V1 - SQL Injection

X-NetStat Pro 5.63 - Local Buffer Overflow

Apache CouchDB 2.3.1 - Cross-Site Request Forgery / Cross-Site Scripting

24.3.2019

Bugtraq

 

Malware

Ransom.Ploc

Backdoor.Picigail

Phishing

 

Vulnerebility

 

Exploint

 

24.3.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

 

Exploint

snap - seccomp BBlacklist for TIOCSTI can be Circumvented

Inout Article Base CMS - SQL Injection

22.3.2019

Bugtraq

 

Malware

 

Phishing

Amazon Order

22nd March 2019

Amazon Order Confirmation

Vulnerebility

Oracle Java SE CVE-2019-2426 Information Disclosure Vulnerability
2019-03-22
http://www.securityfocus.com/bid/106590

IBM Java SDK CVE-2018-1890 Local Privilege Escalation Vulnerability
2019-03-22
http://www.securityfocus.com/bid/107448

QEMU CVE-2019-8934 Local Information Disclosure Vulnerability
2019-03-22
http://www.securityfocus.com/bid/107115

PuTTY Multiple Security Vulnerabilities
2019-03-22
http://www.securityfocus.com/bid/107484

Cloud Foundry Cloud Controller API CVE-2017-8037 Incomplete Fix Information Disclosure Vulnerability
2019-03-22
http://www.securityfocus.com/bid/100448

Opencontainers runc CVE-2019-5736 Local Command Execution Vulnerability
2019-03-22
http://www.securityfocus.com/bid/106976

Mozilla Firefox Unspecified Remote Code Execution Vulnerability
2019-03-22
http://www.securityfocus.com/bid/107534

Mozilla Firefox Unspecified Remote Code Execution Vulnerability
2019-03-22
http://www.securityfocus.com/bid/107533

Microsoft Edge Unspecified Security Bypass Vulnerability
2019-03-22
http://www.securityfocus.com/bid/107532

Ghostscript CVE-2019-3838 Security Bypass Vulnerability
2019-03-22
http://www.securityfocus.com/bid/107520

Atlassian SourceTree CVE-2018-20235 Arbitrary Code Execution Vulnerability
2019-03-21
http://www.securityfocus.com/bid/107407

Atlassian SourceTree CVE-2018-20234 Arbitrary Code Execution Vulnerability
2019-03-21
http://www.securityfocus.com/bid/107414

Red Hat JBoss BPMS CVE-2016-6343 Cross Site Scripting Vulnerability
2019-03-21
http://www.securityfocus.com/bid/96987

Exploint

Meeplace Business Review Script - 'id' SQL Injection

Matri4Web Matrimony Website Script - Multiple SQL Injection

21.3.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Red Hat JBoss BPMS CVE-2016-6343 Cross Site Scripting Vulnerability
2019-03-21
http://www.securityfocus.com/bid/96987

Mozilla Firefox MFSA2019-01 Multiple Security Vulnerabilities
2019-03-20
http://www.securityfocus.com/bid/106773

Gemalto Sentinel UltraPro ICSA-19-073-02 Security Vulnerability
2019-03-20
http://www.securityfocus.com/bid/107415

Cisco IP Phone 7800 Series and 8800 Series CVE-2019-1716 Remote Code Execution Vulnerability
2019-03-20
http://www.securityfocus.com/bid/107503

Cisco IP Phone 8800 Series CVE-2019-1764 Cross Site Request Forgery Vulnerability
2019-03-20
http://www.securityfocus.com/bid/107502

Cisco IP Phone 8800 Series CVE-2019-1765 Path Traversal Arbitrary File Write Vulnerability
2019-03-20
http://www.securityfocus.com/bid/107500

Cisco IP Phone 8800 Series CVE-2019-1763 Unauthorized Access Vulnerability
2019-03-20
http://www.securityfocus.com/bid/107499

Cisco IP Phone 8800 Series CVE-2019-1766 Denial of Service Vulnerability
2019-03-20
http://www.securityfocus.com/bid/107498

Exploint

Bootstrapy CMS - Multiple SQL Injection

Canarytokens 2019-03-01 - Detection Bypass

Placeto CMS Alpha v4 - 'page' SQL Injection

uHotelBooking System - 'system_page' SQL Injection

The Company Business Website CMS - Multiple Vulnerabilities

Rails 5.2.1 - Arbitrary File Content Disclosure

DVD X Player 5.5.3 - '.plf' Buffer Overflow

Netartmedia Vlog System - 'email' SQL Injection

20.3.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Mozilla Firefox MFSA2019-01 Multiple Security Vulnerabilities
2019-03-20
http://www.securityfocus.com/bid/106773

Gemalto Sentinel UltraPro ICSA-19-073-02 Security Vulnerability
2019-03-20
http://www.securityfocus.com/bid/107415

Oracle PeopleSoft Enterprise PeopleTools Multiple Remote Security Vulnerabilities
2019-03-19
http://www.securityfocus.com/bid/106592

Oracle E-Business Suite Cpujan2019 Multiple Security Vulnerabilities
2019-03-19
http://www.securityfocus.com/bid/106620

Oracle Web Cache CVE-2019-2438 Remote Security Vulnerability
2019-03-19
http://www.securityfocus.com/bid/106612

Oracle Java SE/Java SE Embedded/JRockit CVE-2018-3180 Remote Security Vulnerability
2019-03-19
http://www.securityfocus.com/bid/105617

Exploint

PLC Wireless Router GPN2.4P21-C-CN - Cross-Site Request Forgery

PLC Wireless Router GPN2.4P21-C-CN - Incorrect Access Control

202CMS v10beta - Multiple SQL Injection

NetShareWatcher 1.5.8.0 - Local SEH Buffer Overflow

Netartmedia PHP Business Directory 4.2 - SQL Injection

Netartmedia PHP Dating Site - SQL Injection

Netartmedia Jobs Portal 6.1 - SQL Injection

Netartmedia PHP Real Estate Agency 4.0 - SQL Injection

Netartmedia PHP Car Dealer - SQL Injection

19.3.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Oracle PeopleSoft Enterprise PeopleTools Multiple Remote Security Vulnerabilities
2019-03-19
http://www.securityfocus.com/bid/106592

Oracle E-Business Suite Cpujan2019 Multiple Security Vulnerabilities
2019-03-19
http://www.securityfocus.com/bid/106620

Oracle Web Cache CVE-2019-2438 Remote Security Vulnerability
2019-03-19
http://www.securityfocus.com/bid/106612

Oracle Java SE/Java SE Embedded/JRockit CVE-2018-3180 Remote Security Vulnerability
2019-03-19
http://www.securityfocus.com/bid/105617

PHP Information Disclosure and Heap Buffer Overflow Vulnerabilities
2019-03-18
http://www.securityfocus.com/bid/107156

Exploint

Microsoft Edge - Flash click2play Bypass with CObjectElement::FinalCreateObject

Microsoft VBScript - VbsErase Memory Corruption

Microsoft Internet Explorer 11 - VBScript Execution Policy Bypass in MSHTML

Google Chrome < M73 - FileSystemOperationRunner Use-After-Free

Google Chrome < M73 - MidiManagerWin Use-After-Free

Google Chrome < M73 - Data Race in ExtensionsGuestViewMessageFilter

Google Chrome < M73 - Double-Destruction Race in StoragePartitionService

Jenkins 2.137 and Pipeline Groovy Plugin 2.61 - ACL Bypass and Metaprogramming RCE (Metasploit)

libseccomp < 2.4.0 - Incorrect Compilation of Arithmetic Comparisons

Netartmedia Real Estate Portal 5.0 - SQL Injection

Netartmedia PHP Mall 4.1 - SQL Injection

Advanced Host Monitor 11.92 beta - Local Buffer Overflow

Netartmedia Event Portal 2.0 - 'Email' SQL Injection

eNdonesia Portal 8.7 - Multiple Vulnerabilities

MyBB Upcoming Events Plugin 1.32 - Cross-Site Scripting

Gila CMS 1.9.1 - Cross-Site Scripting

18.3.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

PHP Information Disclosure and Heap Buffer Overflow Vulnerabilities
2019-03-18
http://www.securityfocus.com/bid/107156

RSA Archer GRC Platform CVE-2019-3716 Local Information Disclosure Vulnerability
2019-03-18
http://www.securityfocus.com/bid/107406

Microsoft Azure Linux Guest Agent CVE-2019-0804 Local Information Disclosure Vulnerability
2019-03-18
http://www.securityfocus.com/bid/107410

IBM Spectrum Scale CVE-2018-1723 Information Disclosure Vulnerability
2019-03-18
http://www.securityfocus.com/bid/105975

Eclipse OpenJ9 CVE-2018-12539 Multiple Privilege Escalation Vulnerabilities
2019-03-18
http://www.securityfocus.com/bid/105126

Oracle Java SE CVE-2018-2973 Remote Security Vulnerability
2019-03-18
http://www.securityfocus.com/bid/104773

IBM Java SDK CVE-2018-1656 Directory Traversal Vulnerability
2019-03-18
http://www.securityfocus.com/bid/105118

Django CVE-2019-6975 Denial of Service Vulnerability
2019-03-18
http://www.securityfocus.com/bid/106964

Exploint

BMC Patrol Agent - Privilege Escalation Cmd Execution (Metasploit)

TheCarProject v2 - Multiple SQL Injection

WinAVI iPod/3GP/MP4/PSP Converter 4.4.2 - Denial of Service

WinMPG Video Convert 9.3.5 - Denial of Service

17.3.2019

Bugtraq

 

Malware

 

Phishing

Amazon Order

16th March 2019

Amazon Order Confirmation

Vulnerebility

 

Exploint

WinRAR 5.61 - Path Traversal

15.3.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Microsoft Windows Win32k CVE-2019-0808 Local Privilege Escalation Vulnerability
2019-03-15
http://www.securityfocus.com/bid/107331

Google Chrome Prior to 73.0.3683.75 Multiple Security Vulnerabilities
2019-03-15
http://www.securityfocus.com/bid/107363

Oracle Java SE CVE-2019-2422 Information Disclosure Vulnerability
2019-03-14
http://www.securityfocus.com/bid/106596

Exploint

Moodle 3.4.1 - Remote Code Execution

Laundry CMS - Multiple Vulnerabilities

Vembu Storegrid Web Interface 4.4.0 - Multiple Vulnerabilities

ICE HRM 23.0 - Multiple Vulnerabilities

Mail Carrier 2.5.1 - 'MAIL FROM' Buffer Overflow

CMS Made Simple Showtime2 Module 3.6.2 - Authenticated Arbitrary File Upload

NetData 1.13.0 - HTML Injection

14.3.2019

Bugtraq

 

Malware

Backdoor.Filensfer

Backdoor.Fakeslic

Phishing

 

Vulnerebility

Google Chrome Prior to 73.0.3683.75 Multiple Security Vulnerabilities
2019-03-15
http://www.securityfocus.com/bid/107363

Oracle Java SE CVE-2019-2422 Information Disclosure Vulnerability
2019-03-14
http://www.securityfocus.com/bid/106596

Oracle Java SE CVE-2019-2449 Remote Security Vulnerability
2019-03-14
http://www.securityfocus.com/bid/106597

Oracle Java SE CVE-2019-2426 Information Disclosure Vulnerability
2019-03-14
http://www.securityfocus.com/bid/106590

Exploint

Apache UNO / LibreOffice Version: 6.1.2 / OpenOffice 4.1.6 API - Remote Code Execution

FTPGetter Standard 5.97.0.177 - Remote Code Execution

Pegasus CMS 1.0 - 'extra_fields.php' Plugin Remote Code Execution

Intel Modular Server System 10.18 - Cross-Site Request Forgery (Change Admin Password)

13.3.2019

Bugtraq

 

Malware

Exp.CVE-2019-0808

Exp.CVE-2019-0797

W32.Extrat.C

Phishing

 

Vulnerebility

Google Chrome CVE-2019-5786 'FileReader' Use After Free Arbitrary Code Execution Vulnerability
2019-03-13
http://www.securityfocus.com/bid/107213

Wibu Systems WibuKey DRM Multiple Input Validation Vulnerabilities
2019-03-13
http://www.securityfocus.com/bid/107005

Microsoft NuGet Package Manager CVE-2019-0757 Tampering Security Bypass Vulnerability
2019-03-13
http://www.securityfocus.com/bid/107285

SAP BusinessObjects Business Intelligence CVE-2019-0268 XML External Entity Injection Vulnerability
2019-03-13
http://www.securityfocus.com/bid/107364

Vixie Cron CVE-2019-9705 Denial of Service Vulnerability
2019-03-13
http://www.securityfocus.com/bid/107378

Exploint

Microsoft Windows - .reg File / Dialog Box Message Spoofing

Microsoft Windows MSHTML Engine - "Edit" Remote Code Execution

Apache Tika-server < 1.18 - Command Injection

Core FTP Server FTP / SFTP Server v2 Build 674 - 'MDTM' Directory Traversal

Core FTP Server FTP / SFTP Server v2 Build 674 - 'SIZE' Directory Traversal

WordPress Plugin GraceMedia Media Player 1.0 - Local File Inclusion

pfSense 2.4.4-p1 (HAProxy Package 0.59_14) - Persistent Cross-Site Scripting

elFinder PHP Connector < 2.1.48 - exiftran Command Injection (Metasploit)

12.3.2019

Bugtraq

 

Malware

Backdoor.Sarhus

Backdoor.Xoratag

Phishing

 

Vulnerebility

SAP Business Client Unspecified Security Vulnerability
2019-03-12
http://www.securityfocus.com/bid/104436

SAP Enterprise Financial Services CVE-2018-2484 Remote Authorization Bypass Vulnerability
2019-03-12
http://www.securityfocus.com/bid/106477

SAP NetWeaver Java AS CVE-2019-0275 Cross Site Scripting Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107362

SAP Work and Inventory Manager CVE-2019-0274 Denial of Service Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107360

SAP BusinessObjects Business Intelligence Platform CVE-2019-0269 Cross Site Scripting Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107359

Adobe Photoshop CC CVE-2019-7094 Arbitrary Code Execution Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107357

SAP HANA Extended Application Services CVE-2019-0277 XML External Entity Injection Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107356

SAP Netweaver ABAP Server CVE-2019-0271 XML External Entity Injection Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107355

Adobe Digital Editions CVE-2019-7095 Unspecified Heap Buffer Overflow Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107354

Multiple SAP Products CVE-2019-0276 Remote Authorization Bypass Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107353

Microsoft Windows Win32k CVE-2019-0808 Local Privilege Escalation Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107331

Microsoft Windows Win32k CVE-2019-0797 Local Privilege Escalation Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107330

Microsoft Windows GDI Component CVE-2019-0614 Information Disclosure Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107250

Microsoft Windows VBScript Engine CVE-2019-0772 Remote Code Execution Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107239

Microsoft Windows DHCP Client CVE-2019-0726 Remote Code Execution Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107236

Microsoft Windows DHCP Client CVE-2019-0698 Remote Code Execution Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107235

Microsoft Windows Deployment Services TFTP Server CVE-2019-0603 Remote Code Execution Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107229

Microsoft Office SharePoint CVE-2019-0778 Cross Site Scripting Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107226

Microsoft Windows Subsystem for Linux CVE-2019-0682 Local Privilege Escalation Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107225

Microsoft Office Access Connectivity Engine CVE-2019-0748 Remote Code Execution Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107224

Microsoft Windows ActiveX CVE-2019-0784 Remote Code Execution Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107222

Microsoft Windows DHCP Client CVE-2019-0697 Remote Code Execution Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107221

Microsoft Windows Kernel CVE-2019-0755 Local Information Disclosure Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107194

Microsoft Windows Kernel CVE-2019-0702 Local Information Disclosure Vulnerability
2019-03-12
http://www.securityfocus.com/bid/107193

Google Chrome CVE-2019-5786 'FileReader' Use After Free Arbitrary Code Execution Vulnerability
2019-03-07
http://www.securityfocus.com/bid/107213

Exploint

Core FTP 2.0 build 653 - 'PBSZ' Denial of Service (PoC)

PilusCart 1.4.1 - Cross-Site Request Forgery (Add Admin)

11.3.2019

Bugtraq

 

Malware

 

Phishing

Amazon Order

11th March 2019

Amazon Order Confirmation

Vulnerebility

 

Exploint

OpenKM 6.3.2 < 6.3.7 - Remote Command Execution (Metasploit)

Liferay CE Portal < 7.1.2 ga3 - Remote Command Execution (Metasploit)

NetSetMan 4.7.1 - Local Buffer Overflow (SEH Unicode)

Linux Kernel 4.4 (Ubuntu 16.04) - 'snd_timer_user_ccallback()' Kernel Pointer Leak

Flexpaper PHP Publish Service 2.3.6 - Remote Code Execution

PRTG Network Monitor 18.2.38 - Authenticated Remote Code Execution

10.3.2019

Bugtraq

 

Malware

Trojan.Bitartra

Phishing

AOL Member Service

8th March 2019

AOL Account Notification
Regarding AOL Oath.

Vulnerebility

 

Exploint

DirectAdmin 1.55 - 'CMD_ACCOUNT_ADMIN' Cross-Site Request Forgery

McAfee ePO 5.9.1 - Registered Executable Local Access Bypass

OrientDB 3.0.17 GA Community Edition - Cross-Site Request Forgery / Cross-Site Scripting

8.3.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

 

Exploint

Drupal < 8.5.11 / < 8.6.10 - RESTful Web Services unserialize() Remote Command Execution (Metasploit)

Imperva SecureSphere 13.x - 'PWS' Command Injection (Metasploit)

FreeBSD - Intel SYSRET Privilege Escalation (Metasploit)

Anyburn 4.3 x86 - 'Copy disc to image file' Buffer Overflow (Unicode) (SEH)

QNAP TS-431 QTS < 4.2.2 - Remote Command Execution (Metasploit)

Kados R10 GreenBee - Multiple SQL Injection

7.3.2019

Bugtraq

 

Malware

Win32/Filecoder.LockedFile.I

Phishing

 

Vulnerebility

Google Chrome CVE-2019-5786 'FileReader' Use After Free Arbitrary Code Execution Vulnerability
2019-03-07
http://www.securityfocus.com/bid/107213

Linux kernel CVE-2019-7221 Local Denial of Service Vulnerability
2019-03-07
http://www.securityfocus.com/bid/107294

Linux kernel CVE-2019-9213 Local Denial of Service Vulnerability
2019-03-06
http://www.securityfocus.com/bid/107296

Exploint

 

6.3.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

RSLinx Classic CVE-2019-6553 Stack Buffer Overflow Vulnerability
2019-03-05
http://www.securityfocus.com/bid/107293

Exploint

Android - getpidcon() Usage in Hardware binder ServiceManager Permits ACL Bypass

Android - binder Use-After-Free via racy Initialization of ->allow_user_free

Linux < 4.20.14 - Virtual Address 0 is Mappable via Privileged write() to /proc/*/mem

5.3.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

OpenDocMan 1.3.4 - 'search.php where' SQL Injection

Exploint

 

4.3.2019

Bugtraq

 

Malware

 

Phishing

ExxonMobil Smart Card

3rd March 2019

Get 12 cents off* every gallon
at 11,000+ Exxon & Mobil
stations

Vulnerebility

Multiple Cisco Products CVE-2019-1674 Local Command Injection Vulnerability
2019-03-04
http://www.securityfocus.com/bid/107184

Microsoft Teams CVE-2019-5922 DLL Loading Remote Code Execution Vulnerability
2019-03-04
http://www.securityfocus.com/bid/107200

Microsoft Windows CVE-2019-5921 DLL Loading Remote Code Execution Vulnerability
2019-03-04
http://www.securityfocus.com/bid/107218

EMC RSA Authentication Manager CVE-2019-3711 Information Disclosure Vulnerability
2019-03-03
http://www.securityfocus.com/bid/107210

Exploint

Microsoft Edge Chakra 1.11.4 - Read Permission via Type Confusion

Fiberhome AN5506-04-F RP2669 - Persistent Cross-Site Scripting

WordPress Plugin Cerber Security, Antispam & Malware Scan 8.0 - Multiple Bypass Vulnerabilities

Craft CMS 3.1.12 Pro - Cross-Site Scripting

Bolt CMS 3.6.4 - Cross-Site Scripting

MarcomCentral FusionPro VDP Creator < 10.0 - Directory Traversal

Raisecom XPON ISCOMHT803G-U_2.0.0_140521_R4.1.47.002 - Remote Code Execution

zzzphp CMS 1.6.1 - Cross-Site Request Forgery

Splunk Enterprise 7.2.4 - Custom App RCE (Persistent Backdoor - Custom Binary Payload)

Booked Scheduler 2.7.5 - Remote Command Execution (Metasploit)

FileZilla 3.40.0 - 'Local search' / 'Local site' Denial of Service (PoC)

OOP CMS BLOG 1.0 - Multiple Cross-Site Request Forgery

OOP CMS BLOG 1.0 - Multiple SQL Injection

elFinder 2.1.47 - Command Injection vulnerability in the PHP connector

CMSsite 1.0 - Multiple Cross-Site Request Forgery

1.3.2019

Bugtraq

 

Malware

Exp.CVE-2018-20250

Phishing

 

Vulnerebility

Juniper Junos CVE-2017-2303 Denial of Service Vulnerability
2019-03-01
http://www.securityfocus.com/bid/95408

Mozilla Firefox CVE-2018-18511 Information Disclosure Vulnerability
2019-03-01
http://www.securityfocus.com/bid/107009

Multiple PSI GridConnect GmbH Products CVE-2019-6528 Cross Site Scripting Vulnerability
2019-02-28
http://www.securityfocus.com/bid/107201

Exploint

macOS XNU - Copy-on-Write Behavior Bypass via Mount of User-Owned Filesystem Image

Linux < 4.14.103 / < 4.19.25 - Out-of-Bounds Read and Write in SNMP NAT Module

tcpdump < 4.9.3 - Multiple Heap-Based Out-of-Bounds Reads

Google Chrome < M72 - FileWriterImpl Use-After-Free

Google Chrome < M72 - Use-After-Free in RenderProcessHostImpl Binding for P2PSocketDispatcherHost

Google Chrome < M72 - RenderFrameHostImpl::CreateMediaStreamDispatcherHost Use-After-Free

Google Chrome < M72 - PaymentRequest Service Use-After-Free

28.2.2019

Bugtraq

 

Malware

 

Phishing

Wells Fargo Online

28th February 2019

Your Account Security
Notification

Vulnerebility

Google Chrome PDF File Handling Information Disclosure Vulnerability
2019-02-28
http://www.securityfocus.com/bid/107182

GNU wget CVE-2018-20483 Local Information Disclosure Vulnerability
2019-02-27
http://www.securityfocus.com/bid/106358

Tcpdump CVE-2018-19519 Stack Based Buffer Overflow Vulnerability
2019-02-27
http://www.securityfocus.com/bid/106098

Multiple Cisco Products CVE-2019-1674 Local Command Injection Vulnerability
2019-02-27
http://www.securityfocus.com/bid/107184

Exploint

Feng Office 3.7.0.5 - Remote Command Execution (Metasploit)

TransMac 12.3 - Denial of Service (PoC)

Usermin 1.750 - Remote Command Execution (Metasploit)

Joomla! Component J2Store < 3.3.7 - SQL Injection

Joomla! Component J2Store < 3.3.7 - SQL Injection

FTP Server 1.32 - Denial of Service

Simple Online Hotel Reservation System - Cross-Site Request Forgery (Delete Admin)

Simple Online Hotel Reservation System - Cross-Site Request Forgery (Add Admin)

Simple Online Hotel Reservation System - SQL Injection

27.2.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Tcpdump CVE-2018-19519 Stack Based Buffer Overflow Vulnerability
2019-02-27
http://www.securityfocus.com/bid/106098

PHP CVE-2019-9023 Multiple Heap Buffer Overflow Vulnerabilities
2019-02-26
http://www.securityfocus.com/bid/106765

PHP 'phar_detect_phar_fname_ext()' Heap Buffer Overflow Vulnerability
2019-02-26
http://www.securityfocus.com/bid/106747

GNU wget CVE-2018-20483 Local Information Disclosure Vulnerability
2019-02-26
http://www.securityfocus.com/bid/106358

F5 BIG-IP APM CVE-2019-6595 Cross Site Scripting Vulnerability
2019-02-26
http://www.securityfocus.com/bid/107173

Exploint

 

26.2.2019

Bugtraq

 

Malware

 

Phishing

�Dr.Ernest Kwamina Yedu Addiso

25th February 2019

From Bank of Ghana

Vulnerebility

PHP CVE-2019-9023 Multiple Heap Buffer Overflow Vulnerabilities
2019-02-26
http://www.securityfocus.com/bid/106765

PHP 'phar_detect_phar_fname_ext()' Heap Buffer Overflow Vulnerability
2019-02-26
http://www.securityfocus.com/bid/106747

GNU wget CVE-2018-20483 Local Information Disclosure Vulnerability
2019-02-26
http://www.securityfocus.com/bid/106358

Exploint

 

25.2.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Wireshark Multiple Denial of Service Vulnerabilities
2019-02-25
http://www.securityfocus.com/bid/106482

WinRAR Multiple Security Vulnerabilities
2019-02-25
http://www.securityfocus.com/bid/106948

Exploint

Drupal < 8.6.9 - REST Module Remote Code Execution

Xlight FTP Server 3.9.1 - Buffer Overflow (PoC)

Advance Gift Shop Pro Script 2.0.3 - SQL Injection

News Website Script 2.0.5 - SQL Injection

PHP Ecommerce Script 2.0.6 - Cross-Site Scripting / SQL Injection

Jenkins Plugin Script Security 1.49/Declarative 1.3.4/Groovy 2.60 - Remote Code Execution

24.2.2019

Bugtraq

 

Malware

 

Phishing

Dr.Ernest Kwamina Yedu Addison

23rd February 2019

PAYMENT FROM BANK OF GHANA

American Standard Walk-In Tubs

22nd February 2019

Walk In Tubs Only By American
Standard

Cannabliss Labs

22nd February 2019

The new cannabidiol medicine
that is sweeping the USA

Vulnerebility

 

Exploint

Drupal < 8.6.10 / < 8.5.11 - REST Module Remote Code Execution

Teracue ENC-400 - Command Injection / Missing Authentication

Micro Focus Filr 3.4.0.217 - Path Traversal / Local Privilege Escalation

Nuuo Central Management - Authenticated SQL Server SQL Injection (Metasploit)

WebKit JSC - reifyStaticProperty Needs to set the PropertyAttribute::CustomAccessor flag for CustomGetterSetter

22.2.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Rockwell Automation Allen-Bradley PowerMonitor Multiple Security Vulnerabilities
2019-02-22
http://www.securityfocus.com/bid/106333

Opencontainers runc CVE-2019-5736 Local Command Execution Vulnerability
2019-02-21
http://www.securityfocus.com/bid/106976

Exploint

Quest NetVault Backup Server < 11.4.5 - Process Manager Service SQL Injection / Remote Code Execution

AirDrop 2.0 - Denial of Service (DoS)

MikroTik RouterOS < 6.43.12 (stable) / < 6.42.12 (long-term) - Firewall and NAT Bypass

ScreenStream 3.0.15 - Denial of Service

Virtual VCR Max .0a - '.vcr' Buffer Overflow (PoC)

RealTerm Serial Terminal 2.0.0.70 - 'Echo Port' Buffer Overflow (SEH)

EI-Tube 3 - SQL Injection

Valentina Studio 9.0.5 Linux - 'Host' Buffer Overflow (PoC)

C4G Basic Laboratory Information System (BLIS) 3.4 - SQL Injection

Memu Play 6.0.7 - Privilege Escalation

21.2.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Opencontainers runc CVE-2019-5736 Local Command Execution Vulnerability
2019-02-21
http://www.securityfocus.com/bid/106976

Cisco Webex Meetings Online CVE-2019-1680 Security Bypass Vulnerability
2019-02-21
http://www.securityfocus.com/bid/106939

WPA2 Key Reinstallation Multiple Security Weaknesses
2019-02-21
http://www.securityfocus.com/bid/101274

Intel Data Center Manager SDK CVE-2019-0112 Denial of Service Vulnerability
2019-02-21
http://www.securityfocus.com/bid/107064

Intel Data Center Manager SDK CVE-2019-0111 Local Insecure File Permissions Vulnerability
2019-02-21
http://www.securityfocus.com/bid/107067

Intel Data Center Manager SDK CVE-2019-0110 Information Disclosure Vulnerability
2019-02-21
http://www.securityfocus.com/bid/107071

Intel Data Center Manager SDK CVE-2019-0103 Local Information Disclosure Vulnerability
2019-02-21
http://www.securityfocus.com/bid/107074

Intel Data Center Manager SDK Multiple Privilege Escalation Vulnerabilities
2019-02-21
http://www.securityfocus.com/bid/107069

Microsoft .NET Framework and Visual Studio CVE-2019-0657 Spoofing Vulnerability
2019-02-21
http://www.securityfocus.com/bid/106890

Microsoft Windows Device Guard CVE-2019-0631 Local Security Bypass Vulnerability
2019-02-21
http://www.securityfocus.com/bid/106875

Microsoft Windows Device Guard CVE-2019-0632 Local Security Bypass Vulnerability
2019-02-21
http://www.securityfocus.com/bid/106880

Microsoft Windows Device Guard CVE-2019-0627 Local Security Bypass Vulnerability
2019-02-21
http://www.securityfocus.com/bid/106857

Exploint

AirDrop 2.0 - Denial of Service (DoS)

MikroTik RouterOS < 6.43.12 (stable) / < 6.42.12 (long-term) - Firewall and NAT Bypass

ScreenStream 3.0.15 - Denial of Service

Virtual VCR Max .0a - '.vcr' Buffer Overflow (PoC)

RealTerm Serial Terminal 2.0.0.70 - 'Echo Port' Buffer Overflow (SEH)

EI-Tube 3 - SQL Injection

Valentina Studio 9.0.5 Linux - 'Host' Buffer Overflow (PoC)

C4G Basic Laboratory Information System (BLIS) 3.4 - SQL Injection

Memu Play 6.0.7 - Privilege Escalation

20.2.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

systemd CVE-2019-6454 Local Denial of Service Vulnerability
2019-02-20
http://www.securityfocus.com/bid/107081

LibVNCServer Incomplete Fix Multiple Heap Buffer Overflow Vulnerabilities
2019-02-19
http://www.securityfocus.com/bid/106825

Opencontainers runc CVE-2019-5736 Local Command Execution Vulnerability
2019-02-19
http://www.securityfocus.com/bid/106976

Elasticsearch Logstash CVE-2019-7612 Information Disclosure Vulnerability
2019-02-19
http://www.securityfocus.com/bid/107090

Exploint

Belkin Wemo UPnP - Remote Code Execution (Metasploit)

MatrixSSL < 4.0.2 - Stack Buffer Overflow Verifying x.509 Certificates

Android Kernel < 4.8 - ptrace seccomp Filter Bypass

FaceTime - Texture Processing Memory Corruption

WinRAR 5.61 - '.lng' Denial of Service

FTPShell Server 6.83 - 'Account name to ban' Denial of Service (PoC)

HotelDruid 2.3 - Cross-Site Scripting

Apple macOS 10.13.5 - Local Privilege Escalation

Jenkins - Remote Code Execution

Ask Expert Script 3.0.5 - Cross Site Scripting / SQL Injection

Zoho ManageEngine Netflow Analyzer Professional 7.0.0.2 - Path Traversal / Cross-Site Scripting

XAMPP 5.6.8 - SQL Injection / Persistent Cross-Site Scripting

eDirectory - SQL Injection

BulletProof FTP Server 2019.0.0.50 - 'SMTP Server' Denial of Service (PoC)

Valentina Studio 9.0.4 - 'Host' Denial of Service (PoC)

Zuz Music 2.1 - 'zuzconsole/___contact ' Persistent Cross-Site Scripting

Listing Hub CMS 1.0 - 'pages.php id' SQL Injection

Find a Place CMS Directory 1.5 - 'assets/external/data_2.php cate' SQL Injection

NetSetMan 4.7.1 - 'Workgroup' Denial of Service (PoC)

MaxxAudio Drivers WavesSysSvc64.exe 1.6.2.0 - Local Privilege Escalation

19.2.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

LibVNCServer Incomplete Fix Multiple Heap Buffer Overflow Vulnerabilities
2019-02-19
http://www.securityfocus.com/bid/106825

Opencontainers runc CVE-2019-5736 Local Command Execution Vulnerability
2019-02-19
http://www.securityfocus.com/bid/106976

Multiple F5 BIG-IP Products CVE-2018-15319 Denial of Service Vulnerability
2019-02-18
http://www.securityfocus.com/bid/107052

SolarWinds Orion Network Performance Monitor (NPM) CVE-2019-8917 Remote Code Execution Vulnerability
2019-02-18
http://www.securityfocus.com/bid/107061

QEMU CVE-2019-3812 Out-Of-Bounds Read Local Information Disclosure Vulnerability
2019-02-18
http://www.securityfocus.com/bid/107059

Exploint

 

18.2.2019

Bugtraq

 

Malware

Trojan.Tinukebot.B

Phishing

 

Vulnerebility

Multiple F5 BIG-IP Products CVE-2018-15319 Denial of Service Vulnerability
2019-02-18
http://www.securityfocus.com/bid/107052

Exploint

WordPress Plugin WooCommerce - GloBee (cryptocurrency) Payment Gateway 1.1.1 - Payment Bypass / Unauthorized Order Status Spoofing

Zoho ManageEngine ServiceDesk Plus (SDP) < 10.0 build 10012 - Arbitrary File Upload

Oracle Java Runtime Environment - Heap Out-of-Bounds Read During TTF Font Rendering in AlternateSubstitutionSubtable::process

Oracle Java Runtime Environment - Heap Out-of-Bounds Read During TTF Font Rendering in ExtractBitMap_blocClass

Oracle Java Runtime Environment - Heap Out-of-Bounds Read During TTF Font Rendering in OpenTypeLayoutEngine::adjustGlyphPositions

Oracle Java Runtime Environment - Heap Out-of-Bounds Read During OTF Font Rendering in glyph_CloseContour

Comodo Dome Firewall 2.7.0 - Cross-Site Scripting

ArangoDB Community Edition 3.4.2-1 - Cross-Site Scripting

Apache CouchDB 2.3.0 - Cross-Site Scripting

Webiness Inventory 2.3 - 'ProductModel' Arbitrary File Upload

M/Monit 3.7.2 - Privilege Escalation

NBMonitor 1.6.5.0 - 'Key' Denial of Service (PoC)

CMSsite 1.0 - 'post' SQL Injection

MISP 2.4.97 - SQL Command Execution via Command Injection in STIX Module

Master IP CAM 01 3.3.4.2103 - Remote Command Execution

qdPM 9.1 - 'search[keywords]' Cross-Site Scripting

qdPM 9.1 - 'type' Cross-Site Scripting

mIRC < 7.55 - Remote Command Execution Using Argument Injection Through Custom URI Protocol Handlers

Realterm Serial Terminal 2.0.0.70 - Local Buffer Overflow (SEH)

Realterm Serial Terminal 2.0.0.70 - Denial of Service

17.2.2019

Bugtraq

 

Malware

 

Phishing

Support

17th February 2019

Update Your Information !!!

Vulnerebility

 

Exploint

UniSharp Laravel File Manager 2.0.0-alpha7 - Arbitrary File Upload

Linux - 'kvm_ioctl_create_device()' NULL Pointer Dereference

qdPM 9.1 - 'search_by_extrafields[]' SQL Injection

Jinja2 2.10 - 'from_string' Server Side Template Injection

VSCO 1.1.1.0 - Denial of Service (PoC)

MyBB Trash Bin Plugin 1.1.3 - Cross-Site Scripting / Cross-Site Request Forgery

Navicat for Oracle 12.1.15 - "Password" Denial of Service (PoC)

Free IP Switcher 3.1 - 'Computer Name' Denial of Service (PoC)

AirMore 1.6.1 - Denial of Service (PoC)

15.2.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Linux Kernel CVE-2018-5391 Remote Denial of Service Vulnerability
2019-02-15
http://www.securityfocus.com/bid/105108

Mozilla Firefox and Firefox ESR CVE-2019-5785 Integer Overflow Vulnerability
2019-02-15
http://www.securityfocus.com/bid/107008

Google Chrome Prior to 71.0.3578.80 Multiple Security Vulnerabilities
2019-02-15
http://www.securityfocus.com/bid/106084

SSL/TLS Protocol CVE-2016-2183 Information Disclosure Vulnerability
2019-02-14
http://www.securityfocus.com/bid/92630

Exploint

ApowerManager 3.1.7 - Phone Manager Remote Denial of Service (DoS)

LayerBB 1.1.2 - Cross-Site Request Forgery (Add Admin)

MediaMonkey 4.1.23 - '.mp3' URL Denial of Service (PoC)

WordPress Plugin Booking Calendar 8.4.3 - Authenticated SQL Injection

DomainMOD 4.11.01 - 'assets/edit/host.php?whid=5' Cross-Site Scripting

DomainMOD 4.11.01 - 'assets/add/dns.php' Cross-Site Scripting

DomainMOD 4.11.01 - 'category.php CatagoryName, StakeHolder' Cross-Site Scripting

DomainMOD 4.11.01 - 'ssl-accounts.php username' Cross-Site Scripting

DomainMOD 4.11.01 - 'ssl-provider-name' Cross-Site Scripting

Core FTP/SFTP Server 1.2 Build 589.42 - 'User domain' Denial of Service (PoC)

exacqVision ESM 5.12.2 - Privilege Escalation

14.2.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

 

Exploint

Android - binder Use-After-Free of VMA via race Between reclaim and munmap

Android - binder Use-After-Free via fdget() Optimization

Ubuntu snapd < 2.37.1 - Local Privilege Escalation

runc< 1.0-rc6 (Docker < 18.09.2) - Host Command Execution

Skyworth GPON HomeGateways and Optical Network Terminals - Stack Overflow

LayerBB 1.1.2 - Cross-Site Scripting

BlogEngine.NET 3.3.6 - Directory Traversal / Remote Code Execution

Jenkins 2.150.2 - Remote Command Execution (Metasploit)

OPNsense < 19.1.1 - Cross-Site Scripting

13.2.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Linux Kernel 'tcp_input.c' Remote Denial of Service Vulnerability
2019-02-13
http://www.securityfocus.com/bid/104976

OpenSSL CVE-2018-0739 Denial of Service Vulnerability
2019-02-13
http://www.securityfocus.com/bid/103518

OpenSSL CVE-2018-0732 Denial of Service Vulnerability
2019-02-13
http://www.securityfocus.com/bid/104442

OpenSSL CVE-2018-0737 Side Channel Attack Information Disclosure Vulnerability
2019-02-13
http://www.securityfocus.com/bid/103766

Apache CXF CVE-2018-8039 TLS Hostname Verification Security Bypass Vulnerability
2019-02-13
http://www.securityfocus.com/bid/106357

SAP Note Assistant XML External Entity Injection Vulnerability
2019-02-13
http://www.securityfocus.com/bid/99027

Adobe Flash Player CVE-2018-15983 DLL Loading Local Privilege Escalation Vulnerability
2019-02-12
http://www.securityfocus.com/bid/106108

Exploint

Android - binder Use-After-Free of VMA via race Between reclaim and munmap

Android - binder Use-After-Free via fdget() Optimization

NetworkSleuth 3.0 - 'Name' Denial of Service (PoC)

Rukovoditel Project Management CRM 2.4.1 - Cross-Site Scripting

Jiofi 4 (JMR 1140 Amtel_JMR1140_R12.07) - Cross-Site Request Forgery (Admin Token Disclosure)

Jiofi 4 (JMR 1140 Amtel_JMR1140_R12.07) - Cross-Site Request Forgery (Password Disclosure)

Jiofi 4 (JMR 1140 Amtel_JMR1140_R12.07) - Reflected Cross-Site Scripting

Ubuntu snapd < 2.37.1 - Local Privilege Escalation

snapd < 2.37 (Ubuntu) - 'dirty_sock' Local Privilege Escalation (2)

snapd < 2.37 (Ubuntu) - 'dirty_sock' Local Privilege Escalation (1)

runc< 1.0-rc6 (Docker < 18.09.2) - Host Command Execution

Skyworth GPON HomeGateways and Optical Network Terminals - Stack Overflow

LayerBB 1.1.2 - Cross-Site Scripting

BlogEngine.NET 3.3.6 - Directory Traversal / Remote Code Execution

Jenkins 2.150.2 - Remote Command Execution (Metasploit)

OPNsense < 19.1.1 - Cross-Site Scripting

12.2.2019

Bugtraq

 

Malware

Downloader.Keapot

Backdoor.Scuoter

Hacktool.Modlishka

Phishing

 

Vulnerebility

SAP Business Client Unspecified Security Vulnerability
2019-02-12
http://www.securityfocus.com/bid/104436

Adobe Acrobat and Reader CVE-2019-7030 Information Disclosure Vulnerability
2019-02-12
http://www.securityfocus.com/bid/106983

Adobe Creative Cloud CVE-2019-7093 DLL Loading Local Privilege Escalation Vulnerability
2019-02-12
http://www.securityfocus.com/bid/106982

Adobe Acrobat and Reader CVE-2019-7089 Information Disclosure Vulnerability
2019-02-12
http://www.securityfocus.com/bid/106981

Adobe Acrobat and Reader APSB19-07 Multiple Unspecified Arbitrary Code Execution Vulnerabilities
2019-02-12
http://www.securityfocus.com/bid/106980

Adobe Acrobat and Reader APSB19-07 Multiple Unspecified Arbitrary Code Execution Vulnerabilities
2019-02-12
http://www.securityfocus.com/bid/106979

Adobe Acrobat and Reader Out-Of-Bounds Write Multiple Arbitrary Code Execution Vulnerabilities
2019-02-12
http://www.securityfocus.com/bid/106978

Adobe Acrobat and Reader APSB19-07 Multiple Arbitrary Code Execution Vulnerabilities
2019-02-12
http://www.securityfocus.com/bid/106977

Adobe Acrobat and Reader APSB19-07 Multiple Arbitrary Code Execution Vulnerabilities
2019-02-12
http://www.securityfocus.com/bid/106975

Adobe Acrobat and Reader APSB19-07 Multiple Remote Privilege Escalation Vulnerabilities
2019-02-12
http://www.securityfocus.com/bid/106974

Adobe Acrobat and Reader APSB19-07 Multiple Information Disclosure Vulnerabilities
2019-02-12
http://www.securityfocus.com/bid/106973

SAP Netweaver ABAP CVE-2019-0265 XML External Entity Injection Vulnerability
2019-02-12
http://www.securityfocus.com/bid/106972

SAP Disclosure Management CVE-2019-0258 Remote Authorization Bypass Vulnerability
2019-02-12
http://www.securityfocus.com/bid/106969

Adobe ColdFusion CVE-2019-7091 Arbitrary Code Execution Vulnerability
2019-02-12
http://www.securityfocus.com/bid/106968

Adobe ColdFusion CVE-2019-7092 Unspecified Cross Site Scripting Vulnerability
2019-02-12
http://www.securityfocus.com/bid/106965

Multiple Siemens SIPROTEC Products ICSA-16-140-02 Information Disclosure Vulnerabilities
2019-02-11
http://www.securityfocus.com/bid/90773

Exploint

OPNsense < 19.1.1 - Cross-Site Scripting

Jenkins 2.150.2 - Remote Command Execution (Metasploit)

LayerBB 1.1.2 - Cross-Site Scripting

runc< 1.0-rc6 (Docker < 18.09.2) - Host Command Execution

Skyworth GPON HomeGateways and Optical Network Terminals - Stack Overflow

11.2.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Siemens EN100 Ethernet Communication Module Multiple Denial of Service Vulnerabilities
2019-02-11
http://www.securityfocus.com/bid/106221

IBM API Connect CVE-2019-4008 Information Disclosure Vulnerability
2019-02-11
http://www.securityfocus.com/bid/106961

SSL/TLS Protocol CVE-2016-2183 Information Disclosure Vulnerability
2019-02-08
http://www.securityfocus.com/bid/92630

Exploint

Smoothwall Express 3.1-SP4 - Cross-Site Scripting

River Past Cam Do 3.7.6 - Local Buffer Overflow (SEH)

IP-Tools 2.5 - Local Buffer Overflow (SEH) (Egghunter)

VA MAX 8.3.4 - Authenticated Remote Code Execution

MyBB Bans List 1.0 - Cross-Site Scripting

River Past Video Cleaner 7.6.3 - Local Buffer Overflow (SEH)

Avast Anti-Virus < 19.1.2360 - Local Credentials Disclosure

IPFire 2.21 - Cross-Site Scripting

NordVPN 6.19.6 - Denial of Service (PoC)

Indusoft Web Studio 8.1 SP2 - Remote Code Execution

Evince - CBT File Command Injection (Metasploit)

NUUO NVRmini - upgrade_handle.php Remote Command Execution (Metasploit)

Adobe Flash Player - DeleteRangeTimelineOperation Type Confusion (Metasploit)

FutureDj Pro 1.7.2.0 - Denial of Service

AirDroid 4.2.1.6 - Denial of Service

Coship Wireless Router 4.0.0.x/5.0.0.x - WiFi Password Reset

8.2.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

SSL/TLS Protocol CVE-2016-2183 Information Disclosure Vulnerability
2019-02-08
http://www.securityfocus.com/bid/92630

Google Android Multiple Kernel Components Multiple Information Disclosure Vulnerabilites
2019-02-08
http://www.securityfocus.com/bid/93326

Google Android Multiple Qualcomm Components Multiple Security Vulnerabilities
2019-02-08
http://www.securityfocus.com/bid/102974

Cisco Meeting Server CVE-2019-1678 Denial of Service Vulnerability
2019-02-08
http://www.securityfocus.com/bid/106943

Linux Kernel CVE-2018-1087 Local Privilege Escalation Vulnerability
2019-02-08
http://www.securityfocus.com/bid/104127

Apache Subversion CVE-2018-11803 Denial of Service Vulnerability
2019-02-08
http://www.securityfocus.com/bid/106770

Schneider Electric Zelio Soft 2 CVE-2018-7817 Remote Code Execution Vulnerability
2019-02-08
http://www.securityfocus.com/bid/106481

Exploint

 

7.2.2019

Bugtraq

 

Malware

Ransom.Gogalocker

Phishing

 

Vulnerebility

Jenkins Multiple Input Validation Security Vulnerabilities
2019-02-07
http://www.securityfocus.com/bid/106774

Siemens S7-1500 CPU Multiple Denial of Service Vulnerabilities
2019-02-06
http://www.securityfocus.com/bid/106788

Microsoft Exchange Server Remote Privilege Escalation Vulnerability
2019-02-06
http://www.securityfocus.com/bid/106725

OpenSSH CVE-2019-6111 Arbitrary File Overwrite Vulnerability
2019-02-06
http://www.securityfocus.com/bid/106741

Cisco Meeting Server CVE-2019-1676 Denial of Service Vulnerability
2019-02-06
http://www.securityfocus.com/bid/106909

Cisco Web Security Appliance CVE-2019-1672 Remote Security Bypass Vulnerability
2019-02-06
http://www.securityfocus.com/bid/106904

Exploint

 

6.2.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Siemens S7-1500 CPU Multiple Denial of Service Vulnerabilities
2019-02-06
http://www.securityfocus.com/bid/106788

Microsoft Exchange Server Remote Privilege Escalation Vulnerability
2019-02-06
http://www.securityfocus.com/bid/106725

OpenSSH CVE-2019-6111 Arbitrary File Overwrite Vulnerability
2019-02-06
http://www.securityfocus.com/bid/106741

Mozilla Firefox and Firefox ESR Multiple Security Vulnerabilities
2019-02-05
http://www.securityfocus.com/bid/106168

Exploint

Skia - Incorrect Convexity Assumptions Leading to Buffer Overflows

River Past Audio Converter 7.7.16 - Buffer Overflow (SEH)

osCommerce 2.3.4.1 - 'reviews_id' SQL Injection

osCommerce 2.3.4.1 - 'products_id' SQL Injection

osCommerce 2.3.4.1 - 'currency' SQL Injection

5.2.2019

Bugtraq

 

Malware

Linux.Speakup

Phishing

 

Vulnerebility

OpenSSL CVE-2018-0737 Side Channel Attack Information Disclosure Vulnerability
2019-02-05
http://www.securityfocus.com/bid/103766

OpenSSH CVE-2018-15473 User Enumeration Vulnerability
2019-02-05
http://www.securityfocus.com/bid/105140

Poppler 'XRef.cc' Heap Buffer Overflow Vulnerability
2019-02-02
http://www.securityfocus.com/bid/106829

SSL/TLS Protocol CVE-2016-2183 Information Disclosure Vulnerability
2019-02-01
http://www.securityfocus.com/bid/92630

Exploint

OpenMRS Platform < 2.24.0 - Insecure Object Deserialization

Zyxel VMG3312-B10B DSL-491HNU-B1B v2 Modem - Cross-Site Request Forgery

devolo dLAN 550 duo+ Starter Kit - Cross-Site Request Forgery

River Past Audio Converter 7.7.16 - Denial of Service (PoC)

Device Monitoring Studio 8.10.00.8925 - Denial of Service (PoC)

BEWARD N100 H.264 VGA IP Camera M2.1.6 - Arbitrary File Disclosure

BEWARD N100 H.264 VGA IP Camera M2.1.6 - Remote Code Execution

BEWARD N100 H.264 VGA IP Camera M2.1.6 - Cross-Site Request Forgery (Add Admin)

BEWARD N100 H.264 VGA IP Camera M2.1.6 - RTSP Stream Disclosure

4.2.2019

Bugtraq

 

Malware

 

Phishing

Amazon Order

4th February 2019

Amazon Order Confirmation
Pending

Vulnerebility

 

Exploint

Nessus 8.2.1 - Cross-Site Scripting

pfSense 2.4.4-p1 - Cross-Site Scripting

TaskInfo 8.2.0.280 - Denial of Service (PoC)

SpotAuditor 3.6.7 - Denial of Service (PoC)

LibSSH 0.7.6 / 0.8.4 - Unauthorized Access

MyVideoConverter Pro 3.14 - Denial of Service

River Past Ringtone Converter 2.7.6.1601 - Denial of Service (PoC)

SuiteCRM 7.10.7 - 'record' SQL Injection

SuiteCRM 7.10.7 - 'parentTab' SQL Injection

ResourceSpace 8.6 - 'watched_searches.php' SQL Injection

3.2.2019

Bugtraq

 

Malware

 

Phishing

Tesco

3rd February 2019

Important message for Steve

Amazon Order

3rd February 2019

Amazon Order Confirmation
Pending

AT&T

1st February 2019

Update!!!

Amazon Order

1st February 2019

Amazon Order Confirmation
Pending

Review Update

30th January 2019

AOL Mail (New Terms)

Chase

30th January 2019

ACH NOTICE OF CHANGE [SECURE]

Vulnerebility

SSL/TLS Protocol CVE-2016-2183 Information Disclosure Vulnerability
2019-02-01
http://www.securityfocus.com/bid/92630

Identicard Premisys Multiple Security Vulnerabilities
2019-02-01
http://www.securityfocus.com/bid/106552

Mozilla Firefox and Firefox ESR Multiple Security Vulnerabilities
2019-02-01
http://www.securityfocus.com/bid/101059

Expat XML Parsing Remote Denial of Service Vulnerability
2019-02-01
http://www.securityfocus.com/bid/37203

Exploint

SureMDM < 2018-11 Patch - Local / Remote File Inclusion

Remote Process Explorer 1.0.0.16 - Denial of Service SEH Overwrite (PoC)

1.2.2019

Bugtraq

 

Malware

Trojan.Formbook

Backdoor.Chafpe

Backdoor.Chafanty

Backdoor.Chafty

Backdoor.Chafpy

Phishing

 

Vulnerebility

Identicard Premisys Multiple Security Vulnerabilities
2019-02-01
http://www.securityfocus.com/bid/106552

Mozilla Firefox and Firefox ESR Multiple Security Vulnerabilities
2019-02-01
http://www.securityfocus.com/bid/101059

Expat XML Parsing Remote Denial of Service Vulnerability
2019-02-01
http://www.securityfocus.com/bid/37203

Solaris DTMail Mail Environment Variable Buffer Overflow Vulnerability
2019-01-31
http://www.securityfocus.com/bid/3081

Exploint

PassFab Excel Password Recovery 8.3.1 - SEH Local Exploit

31.1.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Google Chrome Prior to 72.0.3626.81 Multiple Security Vulnerabilities
2019-01-31
http://www.securityfocus.com/bid/106767

Oracle VM VirtualBox Mulltiple Local Security Vulnerabilities
2019-01-31
http://www.securityfocus.com/bid/106568

GuppY Error.PHP HTML Injection Vulnerability
2019-01-31
http://www.securityfocus.com/bid/14753

Check Point Firewall-1 RDP Header Firewall Bypassing Vulnerability
2019-01-31
http://www.securityfocus.com/bid/2952

Adobe Flash Player APSB17-17 Multiple Memory Corruption Vulnerabilities
2019-01-31
http://www.securityfocus.com/bid/99025

askSam Web Publisher Cross Site Scripting Vulnerability
2019-01-31
http://www.securityfocus.com/bid/4670

Adobe Flash Player APSB17-15 Multiple Memory Corruption Vulnerabilities
2019-01-31
http://www.securityfocus.com/bid/98349

Solaris xlock Heap Overflow Vulnerability
2019-01-31
http://www.securityfocus.com/bid/3160

Google Chrome Prior to 61.0.3163.79 Multiple Security Vulnerabilities
2019-01-31
http://www.securityfocus.com/bid/100610

WebKit Multiple Memory Corruption Vulnerabilities
2019-01-30
http://www.securityfocus.com/bid/106696

WebKit Multiple Memory Corruption Vulnerabilities
2019-01-30
http://www.securityfocus.com/bid/106699

WebKit Multiple Security Vulnerabilities
2019-01-30
http://www.securityfocus.com/bid/106691

SQLite 'FTS3' extension Remote Code Execution Vulnerability
2019-01-30
http://www.securityfocus.com/bid/106698

Exploint

macOS < 10.14.3 / iOS < 12.1.3 - Kernel Heap Overflow in PF_KEY due to Lack of Bounds Checking when Retrieving Statistics

macOS < 10.14.3 / iOS < 12.1.3 XNU - 'vm_map_copy' Optimization which Requires Atomicity isn't Atomic

macOS < 10.14.3 / iOS < 12.1.3 - Sandbox Escapes due to Type Confusions and Memory Safety Issues in iohideventsystem

macOS < 10.14.3 / iOS < 12.1.3 - Arbitrary mach Port Name Deallocation in XPC Services due to Invalid mach Message Parsing in _xpc_serializer_unpack

macOS XNU - Copy-on-Write Behaviour Bypass via Partial-Page Truncation of File

LanHelper 1.74 - Denial of Service (PoC)

FlexHEX 2.46 - Denial of Service SEH Overwrite (PoC)

ASPRunner Professional 6.0.766 - Denial of Service (PoC)

AMAC Address Change 5.4 - Denial of Service (PoC)

Advanced Host Monitor 11.90 Beta - 'Registration number' Denial of Service (PoC)

UltraISO 9.7.1.3519 - 'Output FileName' Local Buffer Overflow (SEH)

Anyburn 4.3 - 'Convert image to file format' Denial of Service

R 3.5.0 - Local Buffer Overflow (SEH)

Necrosoft DIG 0.4 - Denial of Service SEH Overwrite (PoC)

IP-Tools 2.50 - Denial of Service SEH Overwrite (PoC)

iOS/macOS 10.13.6 - 'if_ports_used_update_wakeuuid()' 16-byte Uninitialized Kernel Stack Disclosure

Advanced File Manager 3.4.1 - Denial of Service (PoC)

10-Strike Network Inventory Explorer 8.54 - Local Buffer Overflow (SEH) (DEP Bypass)

Rukovoditel Project Management CRM 2.4.1 - 'lists_id' SQL Injection

30.1.2019

Bugtraq

 

Malware

Trojan.Vcrodat

Phishing

 

Vulnerebility

WebKit Multiple Memory Corruption Vulnerabilities
2019-01-30
http://www.securityfocus.com/bid/106696

WebKit Multiple Memory Corruption Vulnerabilities
2019-01-30
http://www.securityfocus.com/bid/106699

WebKit Multiple Security Vulnerabilities
2019-01-30
http://www.securityfocus.com/bid/106691

SQLite 'FTS3' extension Remote Code Execution Vulnerability
2019-01-30
http://www.securityfocus.com/bid/106698

SQLite CVE-2018-20346 Remote Integer Overflow Vulnerability
2019-01-30
http://www.securityfocus.com/bid/106323

Apple iOS and macOS Multiple Security Vulnerabilities
2019-01-30
http://www.securityfocus.com/bid/106694

WPA2 Key Reinstallation Multiple Security Weaknesses
2019-01-30
http://www.securityfocus.com/bid/101274

libical Multiple Heap Overflow Vulnerabilities
2019-01-30
http://www.securityfocus.com/bid/91459

Exploint

HTML5 Video Player 1.2.5 - Local Buffer Overflow - Non SEH

MiniUPnPd 2.1 - Out-of-Bounds Read

PDF Signer 3.0 - SSTI to RCE via CSRF Cookie

29.1.2019

Bugtraq

 

Malware

Backdoor.Kirihop

Ransom.Anatova

Phishing

 

Vulnerebility

 

Exploint

 

28.1.2019

Bugtraq

 

Malware

Ransom.Pots

Phishing

 

Vulnerebility

RETIRED: Multiple Oracle Products CVE-2018-9206 Remote Security Vulnerability
2019-01-29
http://www.securityfocus.com/bid/106629

jQuery-File-Upload CVE-2018-9206 Arbitrary File Upload Vulnerability
2019-01-29
http://www.securityfocus.com/bid/105679

Microsoft Exchange Server Remote Privilege Escalation Vulnerability
2019-01-29
http://www.securityfocus.com/bid/106725

Adobe Acrobat and Reader CVE-2018-19723 Information Disclosure Vulnerability
2019-01-28
http://www.securityfocus.com/bid/106751

Symantec Ghost Solution Suite CVE-2018-18364 DLL Loading Arbitrary Code Execution Vulnerability
2019-01-28
http://www.securityfocus.com/bid/106684

Exploint

ResourceSpace 8.6 - 'collection_edit.php' SQL Injection

MyBB IP History Logs Plugin 1.0.2 - Cross-Site Scripting

Smart VPN 1.1.3.0 - Denial of Service (PoC)

Mess Management System 1.0 - SQL Injection

Teameyo Project Management System 1.0 - SQL Injection

Faleemi Desktop Software 1.8 - Local Buffer Overflow (SEH)(DEP Bypass)

Care2x 2.7 (HIS) Hospital Information System - Multiple SQL Injection

BEWARD Intercom 2.3.1 - Credentials Disclosure

Newsbull Haber Script 1.0.0 - 'search' SQL Injection

R 3.4.4 XP SP3 - Buffer Overflow (Non SEH)

Cisco Firepower Management Center 6.2.2.2 / 6.2.3 - Cross-Site Scripting

Cisco RV300 / RV320 - Information Disclosure

Sricam gSOAP 2.8 - Denial of Service

CMSsite 1.0 - 'search' SQL Injection

CMSsite 1.0 - 'cat_id' SQL Injection

Easy Video to iPod Converter 1.6.20 - Buffer Overflow (SEH)

LogonBox Limited / Hypersocket Nervepoint Access Manager - Unauthenticated Insecure Direct Object Reference

AirTies Air5341 Modem 1.0.0.12 - Cross-Site Request Forgery

WordPress Plugin Ad Manager WD 1.0.11 - Arbitrary File Download

Rundeck Community Edition < 3.0.13 - Persistent Cross-Site Scripting

CloudMe Sync 1.11.2 Buffer Overflow - WoW64 (DEP Bypass)

MySQL User-Defined (Linux) (x32/x86_64) - 'sys_exec' Local Privilege Escalation

27.1.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

OpenSSH CVE-2018-20685 Access Bypass Vulnerability
2019-01-25
http://www.securityfocus.com/bid/106531

Cisco SocialMiner CVE-2019-1668 Chat Feed Multiple Cross Site Scripting Vulnerabilities
2019-01-25
http://www.securityfocus.com/bid/106720

Exploint

 

25.1.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

OpenSSH CVE-2018-20685 Access Bypass Vulnerability
2019-01-25
http://www.securityfocus.com/bid/106531

Multiple CPU Hardware CVE-2017-5753 Information Disclosure Vulnerability
2019-01-24
http://www.securityfocus.com/bid/102371

Exploint

Cisco RV320 Dual Gigabit WAN VPN Router 1.4.2.15 - Command Injection

iOS/macOS - 'task_swap_mach_voucher()' Use-After-Free

Wordpress Plugin Wisechat 2.6.3 - Reverse Tabnabbing

Lua 5.3.5 - 'debug.upvaluejoin' Use After Free

GreenCMS 2.x - Arbitrary File Download

GreenCMS 2.x - SQL Injection

24.1.2019

Bugtraq

 

Malware

Backdoor.Exemyr

Phishing

 

Vulnerebility

Multiple CPU Hardware CVE-2017-5753 Information Disclosure Vulnerability
2019-01-24
http://www.securityfocus.com/bid/102371

Multiple Intel Processors Side Channel Attack Multiple Information Disclosure Vulnerabilities
2019-01-24
http://www.securityfocus.com/bid/105080

Exploint

Microsoft Remote Desktop 10.2.4(134) - Denial of Service (PoC)

Zyxel NBG-418N v2 Modem 1.00(AAXM.6)C0 - Cross-Site Request Forgery

Ghostscript 9.26 - Pseudo-Operator Remote Code Execution

AddressSanitizer (ASan) - SUID Executable Privilege Escalation (Metasploit)

ImpressCMS 1.3.11 - 'bid' SQL Injection

Splunk Enterprise 7.2.3 - Authenticated Custom App RCE

SirsiDynix e-Library 3.5.x - Cross-Site Scripting

SimplePress CMS 1.0.7 - SQL Injection

Joomla! Component JHotelReservation 6.0.7 - SQL Injection

Joomla! Component J-CruisePortal 6.0.4 - SQL Injection

23.1.2019

Bugtraq

 

Malware

Trojan.Cartbat

Phishing

 

Vulnerebility

Tridium Niagara Directory Traversal and Authentication-Bypass Vulnerabilities
2019-01-23
http://www.securityfocus.com/bid/105101

Oracle Java SE CVE-2019-2426 Information Disclosure Vulnerability
2019-01-23
http://www.securityfocus.com/bid/106590

Oracle Java SE CVE-2019-2422 Information Disclosure Vulnerability
2019-01-23
http://www.securityfocus.com/bid/106596

Microsoft Internet Explorer CVE-2018-8373 Remote Memory Corruption Vulnerability
2019-01-22
http://www.securityfocus.com/bid/105037

Adobe Flash Player CVE-2018-15982 Use After Free Remote Code Execution Vulnerability
2019-01-22
http://www.securityfocus.com/bid/106116

Microsoft Internet Explorer VBScript Engine CVE-2018-8174 Arbitrary Code Execution Vulnerability
2019-01-22
http://www.securityfocus.com/bid/103998

Exploint

Microsoft Windows CONTACT - HTML Injection / Remote Code Execution

Nagios XI 5.5.6 - Remote Code Execution / Privilege Escalation

Joomla! Component J-BusinessDirectory 4.9.7 - 'type' SQL Injection

Joomla! Component VMap 1.9.6 - SQL Injection

Joomla! Component vRestaurant 1.9.4 - SQL Injection

Joomla! Component vReview 1.9.11 - SQL Injection

Joomla! Component vAccount 2.0.2 - 'vid' SQL Injection

Joomla! Component vWishlist 1.0.1 - SQL Injection

Joomla! Component vBizz 1.0.7 - Remote Code Execution

Joomla! Component vBizz 1.0.7 - SQL Injection

22.1.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Microsoft Internet Explorer CVE-2018-8373 Remote Memory Corruption Vulnerability
2019-01-22
http://www.securityfocus.com/bid/105037

Adobe Flash Player CVE-2018-15982 Use After Free Remote Code Execution Vulnerability
2019-01-22
http://www.securityfocus.com/bid/106116

Microsoft Internet Explorer VBScript Engine CVE-2018-8174 Arbitrary Code Execution Vulnerability
2019-01-22
http://www.securityfocus.com/bid/103998

Adobe Flash Player CVE-2018-4878 Use After Free Remote Code Execution Vulnerability
2019-01-22
http://www.securityfocus.com/bid/102893

Drupal Core Arbitrary PHP Code Execution Vulnerability
2019-01-21
http://www.securityfocus.com/bid/106647

Mozilla Firefox and Firefox ESR Multiple Security Vulnerabilities
2019-01-21
http://www.securityfocus.com/bid/106168

Exploint

Microsoft Windows VCF or Contact' File - URL Manipulation-Spoof Arbitrary Code Execution

Joomla! Component Easy Shop 1.2.3 - Local File Inclusion

CloudMe Sync 1.11.2 - Buffer Overflow + Egghunt

Adianti Framework 5.5.0 - SQL Injection

21.1.2019

Bugtraq

 

Malware

 

Phishing

阿里巴巴国际站

21st January 2019

Verification Code From Alibaba
Group

Mr.Desmond Umeh

20th January 2019

Western Union Cotonou-Benin
Republic

Apple

19th January 2019

RE : Your account Apple ID has
been locked. Please update
information your Apple account
Case ID

Vulnerebility

Drupal Core Arbitrary PHP Code Execution Vulnerability
2019-01-21
http://www.securityfocus.com/bid/106647

Mozilla Firefox and Firefox ESR Multiple Security Vulnerabilities
2019-01-21
http://www.securityfocus.com/bid/106168

Foreman CVE-2018-14664 Multiple HTML Injection Vulnerabilities
2019-01-19
http://www.securityfocus.com/bid/106553

NTP CVE-2018-12327 Stack Buffer Overflow Vulnerability
2019-01-18
http://www.securityfocus.com/bid/104517

Exploint

Linux Kernel 4.13 - 'compat_get_timex()' Leak Kernel Pointer

Kepler Wallpaper Script 1.1 - SQL Injection

Echo Mirage 3.1 - Buffer Overflow (PoC)

GattLib 0.2 - Stack Buffer Overflow

PHP Uber-style GeoTracking 1.1 - SQL Injection

PHP Dashboards NEW 5.8 - Local File Inclusion

PHP Dashboards NEW 5.8 - 'dashID' SQL Injection

MoneyFlux 1.0 - 'id' SQL Injection

Reservic 1.0 - 'id' SQL Injection

Coman 1.0 - 'id' SQL Injection

20.1.2019

Bugtraq

 

Malware

Ransom.Mongolock

Bloodhound.RTF.15

Bloodhound.RTF.16

Bloodhound.RTF.17

Bloodhound.RTF.18

Phishing

Apple

19th January 2019

RE : Your account Apple ID has
been locked. Please update
information your Apple account
Case ID

News

19th January 2019

Reclusive Millionaire Warns:
"Get Out of Cash Now"

Vulnerebility

 

Exploint

Microsoft Edge Chakra - 'JsBuiltInEngineInterface
ExtensionObject::InjectJsBuiltIn
LibraryCode' Use-After-Free

Microsoft Edge Chakra - 'InitClass' Type Confusion

Microsoft Edge Chakra - 'NewScObjectNoCtor' or 'InitProto' Type Confusion

Microsoft Edge Chakra - 'InlineArrayPush' Type Confusion

Pydio / AjaXplorer < 5.0.4 - Unauthenticated Arbitrary File Upload

Webmin 1.900 - Remote Command Execution (Metasploit)

Joomla! Core 3.9.1 - Persistent Cross-Site Scripting in Global Configuration Textfilter Settings

FastTube 1.0.1.0 - Denial of Service (PoC)

VPN Browser+ 1.1.0.0 - Denial of Service (PoC)

7 Tik 1.0.1.0 - Denial of Service (PoC)

Eco Search 1.0.2.0 - Denial of Service (PoC)

One Search 1.1.0.0 - Denial of Service (PoC)

Watchr 1.1.0.0 - Denial of Service (PoC)

SCP Client - Multiple Vulnerabilities (SSHtranger Things)

phpTransformer 2016.9 - Directory Traversal

phpTransformer 2016.9 - SQL Injection

SeoToaster Ecommerce / CRM / CMS 3.0.0 - Local File Inclusion

18.1.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

systemd-journald CVE-2018-16865 Stack Buffer Overflow Vulnerability
2019-01-18
http://www.securityfocus.com/bid/106525

Ghostscript CVE-2018-19134 Remote Code Execution Vulnerability
2019-01-18
http://www.securityfocus.com/bid/106278

QEMU CVE-2018-16867 Directory Traversal Vulnerability
2019-01-18
http://www.securityfocus.com/bid/106195

systemd-journald CVE-2018-16864 Stack-Based Buffer Overflow Vulnerability
2019-01-18
http://www.securityfocus.com/bid/106523

systemd CVE-2018-15688 Heap Buffer Overflow Vulnerability
2019-01-18
http://www.securityfocus.com/bid/105745

Ghostscript CVE-2018-19409 Security Bypass Vulnerability
2019-01-18
http://www.securityfocus.com/bid/105990

Mozilla Firefox and Firefox ESR Multiple Security Vulnerabilities
2019-01-18
http://www.securityfocus.com/bid/106168

NTP CVE-2018-12327 Stack Buffer Overflow Vulnerability
2019-01-17
http://www.securityfocus.com/bid/104517

OpenSSL CVE-2018-5407 Side Channel Attack Information Disclosure Vulnerability
2019-01-17
http://www.securityfocus.com/bid/105897

OpenSSL CVE-2018-0734 Side Channel Attack Information Disclosure Vulnerability
2019-01-17
http://www.securityfocus.com/bid/105758

Poppler CVE-2017-14517 Denial of Service Vulnerability
2019-01-17
http://www.securityfocus.com/bid/105050

Oracle MySQL Server Multiple Security Vulnerabilities
2019-01-17
http://www.securityfocus.com/bid/105600

Threatpost

 

Exploint

 

17.1.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

NTP CVE-2018-12327 Stack Buffer Overflow Vulnerability
2019-01-17
http://www.securityfocus.com/bid/104517

OpenSSL CVE-2018-5407 Side Channel Attack Information Disclosure Vulnerability
2019-01-17
http://www.securityfocus.com/bid/105897

OpenSSL CVE-2018-0734 Side Channel Attack Information Disclosure Vulnerability
2019-01-17
http://www.securityfocus.com/bid/105758

Poppler CVE-2017-14517 Denial of Service Vulnerability
2019-01-17
http://www.securityfocus.com/bid/105050

Oracle MySQL Server Multiple Security Vulnerabilities
2019-01-17
http://www.securityfocus.com/bid/105600

Oracle MySQL Server Multiple Security Vulnerabilities
2019-01-17
http://www.securityfocus.com/bid/105610

Oracle MySQL Server Multiple Security Vulnerabilities
2019-01-17
http://www.securityfocus.com/bid/104766

Memcached Multiple Integer Overflow Vulnerabilities
2019-01-17
http://www.securityfocus.com/bid/94083

OpenSSL CVE-2018-0739 Denial of Service Vulnerability
2019-01-17
http://www.securityfocus.com/bid/103518

Ghostscript 'shading_param' Remote Code Execution Vulnerability
2019-01-17
http://www.securityfocus.com/bid/105178

Wireshark Multiple Denial of Service Vulnerabilities
2019-01-17
http://www.securityfocus.com/bid/106051

Apache HTTP Server CVE-2018-11763 Denial of Service Vulnerability
2019-01-17
http://www.securityfocus.com/bid/105414

Perl CVE-2018-6913 Heap Buffer Overflow Vulnerability
2019-01-17
http://www.securityfocus.com/bid/103953

libgcrypt CVE-2017-0379 Information Disclosure Vulnerability
2019-01-16
http://www.securityfocus.com/bid/100503

FasterXML Jackson-databind CVE-2017-15095 Incomplete Fix Remote Code Execution Vulnerability
2019-01-16
http://www.securityfocus.com/bid/103880

Apache Struts CVE-2016-1181 Remote Code Execution Vulnerability
2019-01-16
http://www.securityfocus.com/bid/91068

Libssh CVE-2018-10933 Authentication Bypass Vulnerability
2019-01-16
http://www.securityfocus.com/bid/105677

Apache Struts CVE-2018-11776 Remote Code Execution Vulnerability
2019-01-16
http://www.securityfocus.com/bid/105125

Linux Kernel 'tcp_input.c' Remote Denial of Service Vulnerability
2019-01-16
http://www.securityfocus.com/bid/104976

Apache Groovy CVE-2016-6814 Remote Code Execution Vulnerability
2019-01-16
http://www.securityfocus.com/bid/95429

Threatpost

 

Exploint

Check Point ZoneAlarm 8.8.1.110 - Local Privilege Escalation

Microsoft Windows CONTACT - Remote Code Execution

Oracle Reports Developer Component 12.2.1.3 - Cross-site Scripting

16.1.2019

Bugtraq

 

Malware

Linux.Ekcorminer

Phishing

PayPal

15th January 2019

RE: Doc ID
PP0924-15012019-00429 - Votre
compte est temporairement
limit� [ IP CONFLICT ]

Vulnerebility

libgcrypt CVE-2017-0379 Information Disclosure Vulnerability
2019-01-16
http://www.securityfocus.com/bid/100503

FasterXML Jackson-databind CVE-2017-15095 Incomplete Fix Remote Code Execution Vulnerability
2019-01-16
http://www.securityfocus.com/bid/103880

Apache Struts CVE-2016-1181 Remote Code Execution Vulnerability
2019-01-16
http://www.securityfocus.com/bid/91068

Libssh CVE-2018-10933 Authentication Bypass Vulnerability
2019-01-16
http://www.securityfocus.com/bid/105677

Apache Struts CVE-2018-11776 Remote Code Execution Vulnerability
2019-01-16
http://www.securityfocus.com/bid/105125

Linux Kernel 'tcp_input.c' Remote Denial of Service Vulnerability
2019-01-16
http://www.securityfocus.com/bid/104976

Apache Groovy CVE-2016-6814 Remote Code Execution Vulnerability
2019-01-16
http://www.securityfocus.com/bid/95429

JasPer Multiple Assertion Failures Denial of Service Vulnerabilities
2019-01-16
http://www.securityfocus.com/bid/94371

Apache HTTP Server CVE-2017-9798 Information Disclosure Vulnerability
2019-01-16
http://www.securityfocus.com/bid/100872

Pivotal Spring Framework CVE-2018-1275 Incomplete Fix Remote Code Execution Vulnerability
2019-01-16
http://www.securityfocus.com/bid/103771

Multiple CPU Hardware CVE-2018-3639 Information Disclosure Vulnerability
2019-01-16
http://www.securityfocus.com/bid/104232

JasPer 'jpc_dec.c' Denial of Service Vulnerability
2019-01-16
http://www.securityfocus.com/bid/100861

Multiple Oracle Products CVE-2016-0635 Remote Security Vulnerability
2019-01-16
http://www.securityfocus.com/bid/91869

Oracle Solaris Cpujan2019 Multiple Local Security Vulnerabilities
2019-01-16
http://www.securityfocus.com/bid/106575

Apache Log4j CVE-2017-5645 Remote Code Execution Vulnerability
2019-01-16
http://www.securityfocus.com/bid/97702

Oracle Outside In Technology Multiple Security Vulnerabilities
2019-01-16
http://www.securityfocus.com/bid/105603

FreeImage CVE-2016-5684 Remote Code Execution Vulnerability
2019-01-16
http://www.securityfocus.com/bid/93287

JasPer 'jpc_t2cod.c' Remote Heap Buffer Overflow Vulnerability
2019-01-16
http://www.securityfocus.com/bid/94925

cURL CVE-2018-1000300 Heap Buffer Overflow Vulnerability
2019-01-16
http://www.securityfocus.com/bid/104207

Novell NetIQ Sentinel CVE-2016-1000031 Remote Code Execution Vulnerability
2019-01-16
http://www.securityfocus.com/bid/93604

Apache ActiveMQ CVE-2018-11775 Man in the Middle Security Bypass Vulnerability
2019-01-16
http://www.securityfocus.com/bid/105335

OpenSSL CVE-2018-0734 Side Channel Attack Information Disclosure Vulnerability
2019-01-16
http://www.securityfocus.com/bid/105758

OWASP AntiSamy CVE-2017-14735 Cross Site Scripting Vulnerability
2019-01-16
http://www.securityfocus.com/bid/105656

JasPer Assertion Failure Multiple Denial of Service Vulnerabilities
2019-01-16
http://www.securityfocus.com/bid/94377

Oracle Enterprise Manager Ops Center CVE-2016-4000 Remote Security Vulnerability
2019-01-16
http://www.securityfocus.com/bid/105647

Apache Batik CVE-2018-8013 Information Disclosure Vulnerability
2019-01-16
http://www.securityfocus.com/bid/104252

FasterXML Jackson-databind CVE-2018-12023 Remote Code Execution Vulnerability
2019-01-16
http://www.securityfocus.com/bid/105659

Apache HTTP Server CVE-2018-11763 Denial of Service Vulnerability
2019-01-16
http://www.securityfocus.com/bid/105414

Apache Tomcat CVE-2018-11784 Open Redirection Vulnerability
2019-01-16
http://www.securityfocus.com/bid/105524

Threatpost

 

Exploint

Microsoft Windows 10 - XmlDocument Insecure Sharing Privilege Escalation

Microsoft Windows 10 - 'RestrictedErrorInfo' Unmarshal Section Handle Use-After-Free

blueman - set_dhcp_handler D-Bus Privilege Escalation (Metasploit)

WebKit JSC JIT - GetIndexedPropertyStorage Use-After-Free

Blueimp's jQuery File Upload 9.22.0 - Arbitrary File Upload Exploit

Google Chrome V8 JavaScript Engine 71.0.3578.98 - Out-of-Memory in Invalid Array Length

Coship Wireless Router 4.0.0.48 / 4.0.0.40 / 5.0.0.54 / 5.0.0.55 / 10.0.0.49 - Unauthenticated Admin Password Reset

GL-AR300M-Lite 2.27 - Authenticated Command Injection / Arbitrary File Download / Directory Traversal

NTPsec 1.1.2 - 'config' Authenticated Out-of-Bounds Write Denial of Service (PoC)

NTPsec 1.1.2 - 'ntp_control' Authenticated NULL Pointer Dereference (PoC)

NTPsec 1.1.2 - 'ntp_control' Out-of-Bounds Read (PoC)

NTPsec 1.1.2 - 'ctl_getitem' Out-of-Bounds Read (PoC)

ShoreTel / Mitel Connect ONSITE 19.49.5200.0 - Remote Code Execution

doorGets CMS 7.0 - Arbitrary File Download

Roxy Fileman 1.4.5 - Arbitrary File Download

FortiGate FortiOS < 6.0.3 - LDAP Credential Disclosure

Roxy Fileman 1.4.5 - Arbitrary File Download

doorGets CMS 7.0 - Arbitrary File Download

Spotify 1.0.96.181 - 'Proxy configuration' Denial of Service (PoC)

15.1.2019

Bugtraq

 

Malware

Bloodhound.RTF.13

Bloodhound.RTF.14

Phishing

 

Vulnerebility

Foreman CVE-2018-14664 Multiple HTML Injection Vulnerabilities
2019-10-10
http://www.securityfocus.com/bid/106553

GNU Binutils CVE-2018-20712 Heap Buffer Overflow Vulnerability
2019-01-14
http://www.securityfocus.com/bid/106563

Identicard Premisys Multiple Security Vulnerabilities
2019-01-14
http://www.securityfocus.com/bid/106552

Threatpost

 

Exploint

Microsoft Windows VCF - Remote Code Execution

Microsoft Windows 10 - COM Desktop Broker Privilege Escalation

Microsoft Windows 10 - Browser Broker Cross Session Privilege Escalation

Microsoft Windows 10 - DSSVC MoveFileInheritSecurity Privilege Escalation

Microsoft Windows 10 - DSSVC CanonicalAndValidateFilePath Security Feature Bypass

Microsoft Windows 10 - DSSVC DSOpenSharedFile Arbitrary File Delete Privilege Escalation

Microsoft Windows 10 - DSSVC DSOpenSharedFile Arbitrary File Open Privilege Escalation

Microsoft Windows 10 - SSPI Network Authentication Session 0 Privilege Escalation

ownDMS 4.7 - SQL Injection

1Password < 7.0 - Denial of Service

AudioCode 400HD - Command Injection

Portier Vision 4.4.4.2 / 4.4.4.6 - SQL Injection

Dokany 1.2.0.1000 - Stack-Based Buffer Overflow Privilege Escalation

Bigcart - Ecommerce Multivendor System 1.0 - SQL Injection

Bigcart - Ecommerce Multivendor System 1.0 - SQL Injection

Job Portal Platform 1.0 - SQL Injection

Real Estate Custom Script 2.0 - SQL Injection

ThinkPHP 5.X - Remote Command Execution

Hucart CMS 5.7.4 - Cross-Site Request Forgery (Add Administrator Account)

HealthNode Hospital Management System 1.0 - SQL Injection

Lenovo R2105 - Cross-Site Request Forgery (Command Execution)

Cleanto 5.0 - SQL Injection

Find a Place CMS Directory 1.5 - SQL Injection

Craigs Classified Ads CMS Theme 1.0.2 - SQL Injection

Hootoo HT-05 - Remote Code Execution (Metasploit)

xorg-x11-server < 1.20.3 - Local Privilege Escalation (Solaris 11 inittab)

Live Call Support Widget 1.5 - Remote Code Execution / SQL Injection

Live Call Support Widget 1.5 - Cross-Site Request Forgery (Add Admin)

Twilio WEB To Fax Machine System Application 1.0 - SQL Injection

Modern POS 1.3 - SQL Injection

Modern POS 1.3 - Arbitrary File Download

Horde Imp - 'imap_open' Remote Command Execution

i-doit CMDB 1.12 - SQL Injection

i-doit CMDB 1.12 - Arbitrary File Download

Across DR-810 ROM-0 - Backup File Disclosure

14.1.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

 

Threatpost

 

Exploint

Luminance Studio 2.17 - Denial of Service (PoC)

Blob Studio 2.17 - Denial of Service (PoC)

Liquid Studio 2.17 - Denial of Service (PoC)

Pixel Studio 2.17 - Denial of Service (PoC)

Paint Studio 2.17 - Denial of Service (PoC)

Tree Studio 2.17 - Denial of Service (PoC)

Selfie Studio 2.17 - Denial of Service (PoC)

Joomla! Component JoomCRM 1.1.1 - SQL Injection

Joomla! Component JoomProject 1.1.3.2 - Information Disclosure

Code Blocks 17.12 - Local Buffer Overflow (SEH) (Unicode)

Adapt Inventory Management System 1.0 - SQL Injection

11.1.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

systemd-journald CVE-2018-16864 Stack-Based Buffer Overflow Vulnerability
2019-01-11
http://www.securityfocus.com/bid/106523

OpenAFS CVE-2018-16949 Multiple Denial of Service Vulnerabilities
2019-01-11
http://www.securityfocus.com/bid/106375

Yokogawa Vnet/IP Open Communication Driver CVE-2018-16196 Denial of Service Vulnerability
2019-01-11
http://www.securityfocus.com/bid/106442

Omron CX-Protocol CVE-2018-19027 Multiple Arbitrary Code Execution Vulnerabilities
2019-01-10
http://www.securityfocus.com/bid/106524

Emerson DeltaV CVE-2018-19021 Authentication Bypass Vulnerability
2019-01-10
http://www.securityfocus.com/bid/106522

Symantec Reporter CLI CVE-2018-12237 OS Command Injection Vulnerability
2019-01-10
http://www.securityfocus.com/bid/106518

Threatpost

 

Exploint

OpenSource ERP 6.3.1. - SQL Injection

eBrigade ERP 4.5 - SQL Injection

Event Locations 1.0.1 - 'id' SQL Injection

Event Calendar 3.7.4 - 'id' SQL Injection

10.1.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

Cisco Identity Services Engine Cross Site Scripting and HTML-injection Vulnerabilities
2019-01-09
http://www.securityfocus.com/bid/106513

Cisco IOS and IOS XE Software CVE-2018-0282 Denial of Service Vulnerability
2019-01-09
http://www.securityfocus.com/bid/106510

Cisco TelePresence Management Suite CVE-2018-15467 Cross Site Scripting Vulnerability
2019-01-09
http://www.securityfocus.com/bid/106508

IBM API Connect CVE-2018-1932 Information Disclosure Vulnerability
2019-01-09
http://www.securityfocus.com/bid/106486

Symantec Norton App Lock CVE-2018-18363 Local Security Bypass Vulnerability
2019-01-09
http://www.securityfocus.com/bid/106450

Threatpost

 

Exploint

MLMPro 1.0 - SQL Injection

Architectural 1.0 - 'email' SQL Injection

Shield CMS 2.2 - 'email' SQL Injection

doitX 1.0 - 'search' SQL Injection

Matrix MLM Script 1.0 - Information Disclosure

eBrigade ERP 4.5 - Arbitrary File Download

PEAR Archive_Tar < 1.4.4 - PHP Object Injection

RGui 3.5.0 - Local Buffer Overflow (SEH)(DEP Bypass)

BlogEngine 3.3 - XML External Entity Injection

polkit - Temporary auth Hijacking via PID Reuse and Non-atomic Fork

Microsoft Windows - DSSVC CheckFilePermission Arbitrary File Deletion

ZTE MF65 BD_HDV6MF65V1.0.0B05 - Cross-Site Scripting

Microsoft Office SharePoint Server 2016 - Denial of Service (Metasploit)

Heatmiser Wifi Thermostat 1.7 - Cross-Site Request Forgery (Update Admin)

Google Chrome V8 JavaScript Engine 71.0.3578.98 - Out-of-Memory. Denial of Service (PoC)

9.1.2019

Bugtraq

 

Malware

Exp.CVE-2019-0566

Exp.CVE-2019-0569

Phishing

 

Vulnerebility

IBM API Connect CVE-2018-1932 Information Disclosure Vulnerability
2019-01-09
http://www.securityfocus.com/bid/106486

SAP ABAP Application Server CVE-2019-0248 Gateway Information Disclosure Vulnerability
2019-01-08
http://www.securityfocus.com/bid/106471

SAP Financial Consolidation Cube Designer CVE-2018-2499 Information Disclosure Vulnerability
2019-01-08
http://www.securityfocus.com/bid/106466

Threatpost

 

Exploint

Microsoft Windows - Windows Error Reporting Local Privilege Escalation

MDwiki < 0.6.2 - Cross-Site Scripting

8.1.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

SAP Landscape Management CVE-2019-0249 Information Disclosure Vulnerability
2019-01-08
http://www.securityfocus.com/bid/106464

SAP Cloud Connector CVE-2019-0246 Multiple Unspecified Security Vulnerabilities
2019-01-08
http://www.securityfocus.com/bid/106463

SAP Hybris Commerce CVE-2019-0238 Cross Site Scripting Vulnerability
2019-01-08
http://www.securityfocus.com/bid/106462

Microsoft Windows DNS Server CVE-2018-8626 Heap Buffer Overflow Vulnerability
2019-01-07
http://www.securityfocus.com/bid/106076

Microsoft Windows Kernel CVE-2018-8611 Local Privilege Escalation Vulnerability
2019-01-07
http://www.securityfocus.com/bid/106082

SANS News

 

SANS News

 

Threatpost

 

Exploint

Wireshark - 'get_t61_string' Heap Out-of-Bounds Read

Dolibarr ERP-CRM 8.0.4 - 'rowid' SQL Injection

CF Image Hosting Script 1.6.5 - (Delete all Pictures) Privilege Escalation

KioWare Server Version 4.9.6 - Weak Folder Permissions Privilege Escalation

Huawei E5330 21.210.09.00.158 - Cross-Site Request Forgery (Send SMS)

Leica Geosystems GR10/GR25/GR30/GR50 GNSS 4.30.063 - JS/HTML Code Injection

Leica Geosystems GR10/GR25/GR30/GR50 GNSS 4.30.063 - Cross-Site Request Forgery

 

7.1.2019

Bugtraq

 

Malware

 

Phishing

Walmart Order

7th January 2019

Thank You For Buying From
Walmart - Confirmation Needed

Fedex

7th January 2019

LAST REMINDER : NANCYTYLER
,please respond immediately

- Cannabliss CBD

6th January 2019

Confirm Your Order Today!!

Vulnerebility

Microsoft Windows DNS Server CVE-2018-8626 Heap Buffer Overflow Vulnerability
2019-01-07
http://www.securityfocus.com/bid/106076

Microsoft Windows Kernel CVE-2018-8611 Local Privilege Escalation Vulnerability
2019-01-07
http://www.securityfocus.com/bid/106082

SANS News

 

Threatpost

 

Exploint

Foscam Video Management System 1.1.4.9 - 'Username' Denial of Service (PoC)

SpotFTP Password Recover 2.4.2 - 'Name' Denial of Service (PoC)

BlueAuditor 1.7.2.0 - 'Key' Denial of Service (PoC)

Ajera Timesheets 9.10.16 - Deserialization of Untrusted Data

Roxy Fileman 1.4.5 - Unrestricted File Upload / Directory Traversal

MyT Project Management 1.5.1 - 'Charge[group_total]' SQL Injection

Wordpress Plugin UserPro < 4.9.21 - User Registration Privilege Escalation

phpMoAdmin MongoDB GUI 1.1.5 - Cross-Site Request Forgery / Cross-Site Scripting

PLC Wireless Router GPN2.4P21-C-CN - Cross-Site Scripting

MyBB OUGC Awards Plugin 1.8.3 - Persistent Cross-Site Scripting

LayerBB 1.1.1 - Persistent Cross-Site Scripting

Microsoft Edge 44.17763.1.0 - NULL Pointer Dereference

All in One Video Downloader 1.2 - Authenticated SQL Injection

Embed Video Scripts - Persistent Cross-Site Scripting

Mailcleaner - Authenticated Remote Code Execution (Metasploit)

Mailcleaner - Authenticated Remote Code Execution (Metasploit)

6.1.2019

Bugtraq

 

Malware

 

Phishing

- Cannabliss CBD

6th January 2019

Confirm Your Order Today!!

Vulnerebility

RETIRED: Adobe Acrobat and Reader CVE-2018-19725 Security Bypass Vulnerability
2019-01-04
http://www.securityfocus.com/bid/106438

Adobe Acrobat and Reader APSB18-41 Multiple Unspecified Security Bypass Vulnerabilities
2019-01-04
http://www.securityfocus.com/bid/106165

Adobe Acrobat and Reader APSB18-41 Multiple Arbitrary Code Execution Vulnerabilities
2019-01-04
http://www.securityfocus.com/bid/106164

Adobe Acrobat and Reader CVE-2018-16018 Security Bypass Vulnerability
2019-01-03
http://www.securityfocus.com/bid/106449

Hetronic Nova-M CVE-2018-19023 Authentication Bypass Vulnerability
2019-01-03
http://www.securityfocus.com/bid/106448

SANS News

 

Threatpost

 

Exploint

 

4.1.2019

Bugtraq

 

Malware

OSX.Windtail

W64.Flobal

Phishing

 

Vulnerebility

Yokogawa Vnet/IP Open Communication Driver CVE-2018-16196 Denial of Service Vulnerability
2019-12-21
http://www.securityfocus.com/bid/106442

OpenAFS CVE-2018-16949 Multiple Denial of Service Vulnerabilities
2019-09-11
http://www.securityfocus.com/bid/106375

Adobe Acrobat and Reader APSB18-41 Multiple Arbitrary Code Execution Vulnerabilities
2019-01-04
http://www.securityfocus.com/bid/106164

Adobe Acrobat and Reader CVE-2018-19725 Security Bypass Vulnerability
2019-01-03
http://www.securityfocus.com/bid/106438

OpenSSL CVE-2018-0734 Side Channel Attack Information Disclosure Vulnerability
2019-01-02
http://www.securityfocus.com/bid/105758

SANS News

 

Threatpost

 

Exploint

 

3.1.2019

Bugtraq

 

Malware

Downloader.Jumpta

Phishing

info ON BEHALF OF Clear-One*

3rd January 2019

One* Payment Will Pay OFF Debt
Faster {shadowrider2006}*

Vulnerebility

Adobe Acrobat and Reader CVE-2018-19725 Security Bypass Vulnerability
2019-01-03
http://www.securityfocus.com/bid/106438

OpenSSL CVE-2018-0734 Side Channel Attack Information Disclosure Vulnerability
2019-01-02
http://www.securityfocus.com/bid/105758

OpenSSL CVE-2018-5407 Side Channel Attack Information Disclosure Vulnerability
2019-01-02
http://www.securityfocus.com/bid/105897

SANS News

 

Threatpost

 

Exploint

 

2.1.2019

Bugtraq

 

Malware

 

Phishing

 

Vulnerebility

OpenSSL CVE-2018-0734 Side Channel Attack Information Disclosure Vulnerability
2019-01-02
http://www.securityfocus.com/bid/105758

OpenSSL CVE-2018-5407 Side Channel Attack Information Disclosure Vulnerability
2019-01-02
http://www.securityfocus.com/bid/105897

Xen 'vmx.c' Denial of Service Vulnerability
2019-01-02
http://www.securityfocus.com/bid/105817

IBM Quality Manager CVE-2017-1609 Cross Site Scripting Vulnerability
2019-01-02
http://www.securityfocus.com/bid/106384

SANS News

 

Threatpost

 

Exploint

NetworkSleuth 3.0.0.0 - 'Key' Denial of Service (PoC)

EZ CD Audio Converter 8.0.7 - Denial of Service (PoC)

Frog CMS 0.9.5 - Cross-Site Scripting

WordPress Plugin Adicon Server 1.2 - 'selectedPlace' SQL Injection

Vtiger CRM 7.1.0 - Remote Code Execution

NBMonitor Network Bandwidth Monitor 1.6.5.0 - 'Name' Denial of Service (PoC)

1.1.2019

Bugtraq

 

Malware

Trojan.Zleloa

Phishing

 

Vulnerebility

F5 BIG-IP APM CVE-2018-15334 Cross Site Request Forgery Vulnerability
2019-01-01
http://www.securityfocus.com/bid/106364

Node.js Multiple Denial of Service Vulnerabilities
2019-01-01
http://www.securityfocus.com/bid/106363

JasPer 'base/jas_malloc.c' Memory Leak Information Disclosure Vulnerability
2018-12-31
http://www.securityfocus.com/bid/106373

GNU Binutils CVE-2018-20623 Heap Based Buffer Overflow Vulnerability
2018-12-31
http://www.securityfocus.com/bid/106370

SANS News

 

Threatpost

 

Exploint