Re: [FD] CVE-2020-8152 – Elevation of Privilege in Backblaze
Posted by Jason Geffner on Dec 25Thanks, Reed. I've updated the GitHub repository name to reflect this change. The detailed...
Posted by Jason Geffner on Dec 25Thanks, Reed. I've updated the GitHub repository name to reflect this change. The detailed...
Posted by Asterisk Security Team on Dec 22 Asterisk Project Security Advisory - AST-2020-004 Product Asterisk Summary Remote crash in...
Posted by Asterisk Security Team on Dec 22 Asterisk Project Security Advisory - AST-2020-003 Product Asterisk Summary Remote crash in...
Posted by Moe Szyslak on Dec 21Rocket.Chat has fixed a server-side path traversal vulnerability that may be abused to write...
Posted by houjingyi on Dec 21Video and POC here : https://www.youtube.com/watch?v=hAPkSGxh9H0 When you open a project in android studio, if...
Posted by Adan Alvarez on Dec 21Details ======= Subject: Local Privilege Escalation Product: SUPREMO by Nanosystems S.r.l. Vendor Homepage: https://www.supremocontrol.com/...
Posted by Stefan Kanthak on Dec 18Hi @ll, this post is a shortened version of <https://skanthak.homepage.t-online.de/detour.html> With Windows 2000 and...
Posted by Kevin Kotas via Fulldisclosure on Dec 18CA20201215-01: Security Notice for CA Service Catalog Issued: December 15, 2020 Last...
Posted by Moe Szyslak on Dec 18Rocket.Chat has quietly fixed a stored XSS vulnerability in the following commits:https://github.com/RocketChat/Rocket.Chat/commit/96d3155245ec65f681664b48b6dafc94c1ea021chttps://github.com/RocketChat/Rocket.Chat/commit/43fe12d775b2329e780a1369a1b2c25070cdcab9 Exploitation of...
Posted by Georg Ph E Heise via Fulldisclosure on Dec 18Programi Bilanc - Build 007 Release 014 31.01.2020 - Software-update...
Posted by Georg Ph E Heise via Fulldisclosure on Dec 18Programi Bilanc - Build 007 Release 014 31.01.2020 - Broken...
Posted by SEC Consult Vulnerability Lab on Dec 17SEC Consult Vulnerability Lab Security Advisory < 20201217-0 > ======================================================================= title: Multiple...
Posted by Apple Product Security via Fulldisclosure on Dec 15APPLE-SA-2020-12-14-4 Additional information for APPLE-SA-2020-11-13-1 macOS Big Sur 11.0.1 macOS Big...
Posted by Apple Product Security via Fulldisclosure on Dec 15APPLE-SA-2020-12-14-9 macOS Server 5.11 macOS Server 5.11 addresses the following issues....
Posted by Apple Product Security via Fulldisclosure on Dec 15APPLE-SA-2020-12-14-8 Safari 14.0.2 Safari 14.0.2 addresses the following issues. Information about...
Posted by Apple Product Security via Fulldisclosure on Dec 15APPLE-SA-2020-12-14-7 tvOS 14.3 tvOS 14.3 addresses the following issues. Information about...
Posted by Apple Product Security via Fulldisclosure on Dec 15APPLE-SA-2020-12-14-6 watchOS 6.3 watchOS 6.3 addresses the following issues. Information about...
Posted by Jack Misiura via Fulldisclosure on Dec 11Title: Cross-site request forgery (CSRF) Product: OpenAsset Digital Asset Management by OpenAsset...
Posted by Roberto Franceschetti on Dec 11No. Secure antivirus deployments would include a "tamper protection" password. You cannot uninstall the...
Posted by Jack Misiura via Fulldisclosure on Dec 11Title: Stored cross-site scripting (XSS) Product: OpenAsset Digital Asset Management by OpenAsset...
Posted by Jack Misiura via Fulldisclosure on Dec 11Title: IP access control bypass Product: OpenAsset Digital Asset Management by OpenAsset...
Posted by Jack Misiura via Fulldisclosure on Dec 11Title: Self-reflected XSS Product: WordPress DirectoriesPro Plugin by SabaiApps Vendor Homepage: https://directoriespro.com/...
Posted by Vulnerability Lab on Dec 08Document Title: =============== Huawei HedEx Lite (DM) - Path Traversal Web Vulnerability References (Source):...
Posted by Vulnerability Lab on Dec 08Document Title: =============== VestaCP v0.9.8-26 - (LoginAs) Token Session Vulnerability References (Source): ====================https://www.vulnerability-lab.com/get_content.php?id=2240 Release...