| [MAGAZINE][HACKTIVITY][BUG BOUNTY]
Account [Registration]   Lab Role [Anonymous] Researcher: 656 Advisories: 766 Documents: 30 Videos: 131 Date: 04.03.2015 TZ: 23:39

[ Home ] [ Upcoming ] [ Mobile ] [ Vendor ] [ Web-Application ] [ Remote ] [ Local ] [ Websites ] [ Documents ] [ Videos ] [ ? ]

[ Mobile Vulnerabilities ]

D2015-02-25Wireless File Transfer Pro Android - CSRF Vulnerabilities2.3Remote693Hadji Samir
D2015-02-17ES File Explorer v3.2.4.1 - Path Traversal Vulnerability7.8Remote1948Hadji Samir
D2015-01-21PhotoSync 1.1.3 Android - Command Inject Vulnerability5.2Local3241Hadji Samir
D2015-01-20Remote Desktop v0.9.4 Android - Multiple Vulnerabilities4.4Remote3049Hadji Samir
D2015-01-19Remote Web Desktop Full 5.9.5 - Multiple Vulnerabilities2.4Remote2728Hadji Samir
D2015-01-16SPSControl v1.2 iOS - (.spc) Persistent Vulnerability3.7Local2118Vulnerability-Lab
D2015-01-15File Pro Mini v5.2 iOS - Multiple Web Vulnerabilities6.9Local2270Vulnerability-Lab
D2015-01-14WiFi File Browser Pro v2.0.8 - Code Execution Vulnerability7.1Remote2777Hadji Samir
D2015-01-13VeryPhoto v3.0 iOS - Command Injection Vulnerability5.6Local2076Vulnerability-Lab
D2015-01-12Foxit MobilePDF v4.4.0 iOS - Multiple Web Vulnerabilities6.9Remote2391Vulnerability-Lab
D2014-12-16iWifi for Chat v1.1 iOS - Denial of Service Vulnerability4.6Remote3157Vulnerability-Lab
D2014-12-10iUSB v1.2 iOS - Arbitrary Code Execution Vulnerability8.7Remote3196Vulnerability-Lab

[ Vendor Vulnerabilities ]

D2015-02-14Ebay Inc Magento BB#5 - Persistent Validation Vulnerability3.8Remote20166Vulnerability-Lab
D2015-02-06BlinkSale Bug Bounty #1 - Encode & Validation Vulnerability3.6Remote2306Vulnerability-Lab
D2015-02-03Facebook Bug Bounty #23 - Session ID & CSRF Vulnerability9.1Remote1861Joe Balhis
D2015-01-19Barracuda Cloud Series - Filter Bypass Vulnerability4.1Remote10673Benjamin K.M.
D2015-01-14Facebook Bug Bounty #19 - Filter Bypass Web Vulnerability3.5Remote5554Paulos Yibelo
D2015-01-13Marketo Cloud - Persistent Mail Encoding Vulnerability3.5Remote9020Vulnerability-Lab
D2015-01-12Heroku API DD Bug Bounty #3 - Persistent Vulnerability2.5Remote2284Benjamin K.M.
D2015-01-09Heroku API Bug Bounty - Persistent Invitation Vulnerability4.1Remote9304Benjamin K.M.
D2014-12-23Facebook Bug Bounty #17 - Migrate Privacy Vulnerability4.9Remote4934Paulos Yibelo
D2014-12-12Facebook BB #18 - IDOR Issue & Privacy Vulnerability4.7Remote9382Paulos Yibelo
D2014-12-10Facebook Bug Bounty #16 (Studio) - Persistent Vulnerability3.5Remote4385Paulos Yibelo
D2014-12-02RelateIQ Bug Bounty #1 - Persistent Signup Vulnerability3.4Remote6156Vulnerability-Lab

[ Web Application Vulnerabilities ]

D2015-02-25Data Source: Scopus CMS - SQL Injection Web Vulnerability8.9Remote1014GuardIran Security
D2015-02-09Pandora FMS v5.1 SP1 - SQL Injection Web Vulnerability6.3Remote15393Vulnerability-Lab
D2015-01-26Mangallam CMS - SQL Injection Web Vulnerability8.9Remote3176GuardIran Security
D2015-01-25SWFupload 2.5.0 - Cross Frame Scripting (XFS) Vulnerability2.3Remote2104N/A - Anonymous
D2015-01-21Program-O v2.4.6 - Multiple Web Vulnerabilities6.3Remote2018Paulos Yibelo
D2015-01-20LizardSquad DDoS Stresser - Multiple Vulnerabilities8.9Remote3091Vulnerability-Lab
D2015-01-19Webinars v2.2.26.0 - Client Side Cross Site Vulnerability2.4Remote2983Hadji Samir
D2015-01-16Banana Dance Wiki CMS b2.x - Multiple Web Vulnerabilities8.1Remote1840Paulos Yibelo
D2015-01-15CatBot v0.4.2 (PHP) - SQL Injection Vulnerability7.3Remote2522Paulos Yibelo
D2015-01-14Pandora FMS v5.1 SP1 - Persistent SNMP Editor Vulnerability3.4Remote6807Vulnerability-Lab
D2015-01-12Blitz CMS Community - SQL Injection Web Vulnerability8.3Remote2016GuardIran Security
D2015-01-06Sitefinity Enterprise v7.2.53 - Persistent UI Vulnerability3.7Remote5811Vulnerability-Lab

[ Remote Vulnerabilities ]

D2015-02-27Swiss File Knife v1.7.4 HTTP - Buffer Overflow Vulnerability8.4Remote537lucyoa
D2015-02-26DSS TFTP 1.0 Server - Path Traversal Vulnerability6.2Remote716lucyoa
D2014-12-05NASA Orion - Bypass, Persistent Issue & Embed Code Exec6Remote6786Benjamin K.M.
D2014-08-29WWW File Share Pro v7.0 - Denial of Service Vulnerability4.2Remote4248Ateeq Khan
D2014-04-07BlueMe Bluetooth v5.0 iOS - Code Execution Vulnerability8.2Remote7172Vulnerability-Lab
D2014-04-06Bluetooth Text Chat v1.0 iOS - Code Execution Vulnerability8.1Remote7348Benjamin K.M.
D2013-10-25Feeder.co RSS Feeder 5.2 Chrome - Persistent Vulnerability3.8Remote7926Ateeq Khan
D2013-01-28nCircle PureCloud Vulnerability Scanner - Vulnerabilities4.1Remote9889Benjamin K.M.
D2012-11-13LAN.FS Messenger v2.4 - Command Execution Vulnerability8.2Remote9907Vulnerability-Lab
D2012-10-20Internet Explorer 9.10 - XSS Protection Filter Vulnerabilities6.4Remote4421N/A - Anonymous
D2012-07-12Kaspersky PM 5.0.0.164 - Software Filter Vulnerability3Remote12203Vulnerability-Lab
D2012-05-16LAN Messenger v1.2.28 - Persistent Software Vulnerability7.5Remote10206Vulnerability-Lab

[ Local Vulnerabilities ]

D2015-03-02Apple iOS 8.0 - 8.0.2 - Controls Re Auth Bypass Vulnerability5.2Local10157Vulnerability-Lab
D2015-01-29T-Mobile Internet Manager - DLL Hijacking (mfc71enu.dll)5.6Local1438metacom
D2015-01-19iExplorer 3.6.3 - DLL Hijacking Exploit itunesmobiledevice.dll8Local2975Hadji Samir
D2015-01-12ZTE Datacard PCW(Telecom MF180) - Multiple Vulnerabilities6Local3208Hadji Samir
D2015-01-06ZTE Datacard MF19 0V1.0.0B PCW - Multiple Vulnerabilities6Local2730Hadji Samir
D2014-12-25Wickr Desktop v2.2.1 Win - Denial of Service Vulnerability3.3Local4208Vulnerability-Lab
D2014-12-24ZTE Ucell 3G Modem App - Privilege Escalation Vulnerability6Local2390Hadji Samir
D2014-12-19Mobilis MobiConnect 3G ZDServer 1.x - Privilege Escalation6.4Local3123Hadji Samir
D2014-12-18iBackup v10.0.0.45 - Privilege Escalation Vulnerability6.2Local2707Hadji Samir
D2014-12-16Apple iOS v8.x - Message Context & Privacy Vulnerability4.2Local6381Vulnerability-Lab
D2014-10-23Apple iOS v8.0.2 - Silent Contact DoS Vulnerability3.1Local5115Vulnerability-Lab
D2014-09-02Apple iOS v7.1.2 - (Merge Apps) Bypass Vulnerability5.9Local8752Benjamin K.M.

[ Website Vulnerabilities ]

D2014-08-28Avira License - Cross Site Request Forgery Vulnerability3.4Remote4640Mazen Gamal
D2014-07-17Microsoft MSN HBE - TB Blind SQL Injection Vulnerability9.1Remote12187Ateeq Khan
D2014-06-17Secunia.com CSI/VIM - Persistent Validation Vulnerabilities3.9Remote7429Benjamin K.M.
D2014-03-05SonicWall Backend Server - CS Cross Site Web Vulnerability2Remote8907Benjamin K.M.
D2014-02-21CNNVD Gov CN #1 - Filter Bypass & Persistent Vulnerability5.5Remote8649Benjamin K.M.
D2013-12-11Microsoft PhotoStory - CS Cross Site Scripting Vulnerability2.1Remote8584Muhammad A.S.
D2013-11-28PressePortal DE - Remote SQL Injection Web Vulnerability8.7Remote8368Marco Onorati
D2013-09-25Adobe - CS Flash Cross Site Vulnerability & Filter Bypass2.1Remote8853Ateeq Khan
D2013-09-19Linkedin Social Network - CS Flash Cross Site Vulnerability 2.1Remote8957Ateeq Khan
D2013-08-28Department of Transport UK - SQL Injection Vulnerability8.6Remote9461Chokri B.A.
D2013-08-27UTA EDU University ENG - SQL Injection Vulnerability8.4Remote8779Chokri B.A.
D2013-07-28Microsoft EPD - CS Flash Cross Site Web Vulnerability2.4Remote9145Muhammad A.S.

[ IT-Security Documents ]

D2015-01-30Glibc Ghost Vulnerability (CVE-2015-0235) - How to Secure6.8Report1363Rajivarnan R.
D2014-07-29Wickr Announcement - Bug Bounty Program 2014RReport5111Wickr Security
D2014-05-12Vulnerable Workers in Uncertain Times - 4th Conference CFPRReport8865ADAPT IT
D2014-04-09HeartBleed SSL CVE 20140160 - 10 Steps to Fix in UbuntuRReport7112Vulnerability-Lab
D2014-03-26ES746 Support-Bulletin - EMS Vulnerability Resolved3.5Bulletins6949Vulnerability-Lab
D2014-03-13RFP - External Network Vulnerability Assessment & PenTestRReport6957Ismail Kaleem
D2014-01-31HackInTheBox Quartal Magazine - eZine Issue 10RMagazin6923HITB TEAM
D2013-05-28Filter Evasion and Bypass Methods - Pentest MagazineRReport12740Vulnerability-Lab
D2012-11-30HackInTheBox Quartal Magazine - eZine Issue 09RMagazin9535HITB TEAM
D2012-11-26Security in a serious way [THN] - eZine Issue 014RMagazin9256THN TEAM
D2012-06-16Malware Magazine [THN] - eZine Issue 012RMagazin9747THN TEAM
D2012-05-29Directory Traversal - Exploitation & Penetration StringsRSheets9773Vulnerability-Lab

[ IT-Security Videos ]

D2015-03-02Apple iOS 8.x - Local Controls Re Auth Bypass Vulnerability5.2Offensiv9848Vulnerability-Lab
D2015-02-03T Mobile Internet Manager - DLL Hijacking (mfc71enudll)5.6Local909metacom
D2015-02-03Facebook Bug Bounty - Session ID & CSRF Vulnerability9.1Remote1134Joe Balhis
D2015-01-09Heroku API Bug Bounty - Persistent Service Vulnerability4.1Offensiv8227Vulnerability-Lab
D2014-12-25Wickr Desktop v2.2.1 - Denial of Service Vulnerability3.3Local2513Vulnerability-Lab
D2014-12-16Apple iOS v8.x - Message Context & Privacy Vulnerability 3.3Offensiv5972Vulnerability-Lab
D2014-12-02RelateIQ Bug Bounty #1 - Persistent Signup Vulnerability3.2Defensive5362Vulnerability-Lab
D2014-11-05PayPal Inc - Filter Bypass & Profile Code Execution9.1Offensiv12790Benjamin K.M.
D2014-10-24Google Youtube - Filter Bypass & Persistent Vulnerability3.9Offensiv4337Jasminder Pal Singh
D2014-10-23Apple iOS v8.0.2 - Silent Contact DoS Vulnerability3.1Offensiv4186Vulnerability-Lab
D2014-10-13Parallels Plesk 11.5.x - URL Protection Filter Bypass5.4Defensive3820Vulnerability-Lab
D2014-10-09PayPal Inc BB - API Restriction Auth Bypass Vulnerability6.2Offensiv4250Vulnerability-Lab

[ Search ] [ News ] [ Submit ] [ Stats ] [ Team ] [ Partner ] [ Talks & Workshop ] [ Subscribe ] [ Customer ] [ Contact ] [ Impressum ]


[Statistics] [Hacktivity] [March] 2 Critical: 0 High: 1 Medium: 1 Low: 0 Best Researcher: [Hadji Samir] Threat:

© EVOLUTION SECURITY GmbH ™