[MAGAZINE][BUG BOUNTY][HACKTIVITY][HACKATHONS] | |
Account [Registration]   Lab Role [Anonymous] Researcher: 716 Advisories: 819 Documents: 31 Videos: 151 Date: 02.07.2015 TZ: 14:30

[ Home ] [ Upcoming ] [ Mobile ] [ Vendor ] [ Web-Application ] [ Remote ] [ Local ] [ Websites ] [ Documents ] [ Videos ] [ ? ]

[ Mobile Vulnerabilities ]

D2015-07-01WK UDID v1.0.1 iOS - Command Inject Vulnerability5.6Local432Vulnerability-Lab
D2015-06-30FCS Scanner v1.0 & v1.4 - Command Inject Vulnerability5.9Local378Vulnerability-Lab
D2015-05-19HiDisk 2.4 iOS - (FolderPath) Persistent Vulnerability3.5Remote2042Vulnerability-Lab
D2015-05-18OYO File Manager 1.1 iOS&Android - Multiple Vulnerabilities6.9Remote1303Vulnerability-Lab
D2015-05-13iClassSchedule 1.6 iOS & Android - Persistent Vulnerability3.4Remote1242Kathrina SL
D2015-05-12Wireless Photo Transfer v3.0 iOS - File Include Vulnerability6.5Remote1282Vulnerability-Lab
D2015-05-07Album Streamer v2.0 iOS - Directory Traversal Vulnerability6.6Remote1403Vulnerability-Lab
D2015-05-06PDF Converter & Editor 2.1 iOS - File Include Vulnerability6.9Remote1473Vulnerability-Lab
D2015-05-05vPhoto-Album v4.2 iOS - File Include Web Vulnerability6.2Remote1660Kathrina SL
D2015-05-04PhotoWebsite v3.1 iOS - File Include Web Vulnerability6.6Remote1364Vulnerability-Lab
D2015-04-23SevDesk v1.1 iOS - Persistent Dashboard Vulnerability4.2Remote13788Vulnerability-Lab
D2015-04-21iPassword Manager v2.6 iOS - Persistent Vulnerabilities3.7Remote1062Vulnerability-Lab

[ Vendor Vulnerabilities ]

D2015-07-02Ebay Inc Magento Bug Bounty #16 - CSRF Web Vulnerability2.5Remote3331Hadji Samir
D2015-06-30Ebay Magento Bug Bounty #14 - Persistent Vulnerability3.8Remote3757Hadji Samir
D2015-06-30Pinterest Bug Bounty #1 - Persistent CNAME Vulnerability3.3Remote7882Vulnerability-Lab
D2015-06-17Ebay Magento Bug Bounty #12 - CSRF Web Vulnerability2.5Remote4748Hadji Samir
D2015-06-16Ebay Magento Bug Bounty #10 - Persistent Vulnerability3.7Remote4027Hadji Samir
D2015-06-15Ebay Magento Bug Bounty #17 - CS Cross Site Vulnerability3Remote3683Hadji Samir
D2015-06-09Heroku Bug Bounty #2 - (API) Re Auth Bypass Vulnerability6.1Remote14896Benjamin K.M.
D2015-05-09Facebook #26 - Bypass & Exception Redirect Vulnerability5.1Remote2135Vulnerability-Lab
D2015-05-07Yahoo eMarketing Bug Bounty #31 - Cross Site Vulnerability3.3Remote1489Hadji Samir
D2015-05-06Oracle BI Mobile HD v11.x iOS - Persistent UI Vulnerability3.8Remote11742Benjamin K.M.
D2015-05-05Fortinet FortiAnalyzer&FortiManager - CS XSS Vulnerability3.5Remote12006Vulnerability-Lab
D2015-05-04Grindr v2.1.1 iOS Bounty #1 - Auth Bypass Vulnerabilities9.3Remote6312Vulnerability-Lab

[ Web Application Vulnerabilities ]

D2015-07-02Google HTTP Live Headers v1.0.6 - CS Cross Site Vulnerability3.3Remote191Hadji Samir
D2015-06-22ManageEngine Asset Explorer v6.1 - Persistent Vulnerability3.5Remote3433Alain Homewood
D2015-06-19ManageEngine SupportCenter 7.90 - Multiple Vulnerabilities6.9Remote1929Alain Homewood
D2015-05-18CRUCMS Crucial Networking - SQL Injection Vulnerability8.2Remote2043kj-fido
D2015-05-13Web India Solutions CMS 2015 - SQL Injection Vulnerability8.3Remote2885kj-fido
D2015-05-08Pimcore v3.0.5 CMS - Multiple Web Vulnerabilities6.2Remote1885Alain Homewood
D2015-05-05TORNADO Computer Trading - SQL Injection Vulnerability7.4Remote3704kj-fido
D2015-03-23SevenIT SevDesk 3.10 - Multiple Web Vulnerabilities5.9Remote13020Vulnerability-Lab
D2015-02-25Data Source: Scopus CMS - SQL Injection Web Vulnerability8.9Remote2935GuardIran Security
D2015-02-09Pandora FMS v5.1 SP1 - SQL Injection Web Vulnerability6.3Remote17296Vulnerability-Lab
D2015-01-26Mangallam CMS - SQL Injection Web Vulnerability8.9Remote6209GuardIran Security
D2015-01-25SWFupload 2.5.0 - Cross Frame Scripting (XFS) Vulnerability2.3Remote3944N/A - Anonymous

[ Remote Vulnerabilities ]

D2015-06-16ZTE ZXV10 W300 v3.1.0c_DR0 - UI Session Vulnerability6Remote1162Hadji Samir
D2015-05-30Apple iOS 8.0.3 - Silent VCF & iMessage DoS Vulnerability4Remote7502Vulnerability-Lab
D2015-02-27Swiss File Knife v1.7.4 HTTP - Buffer Overflow Vulnerability8.4Remote2270lucyoa
D2015-02-26DSS TFTP 1.0 Server - Path Traversal Vulnerability6.2Remote2189lucyoa
D2014-12-05NASA Orion - Bypass, Persistent Issue & Embed Code Exec6Remote8333Benjamin K.M.
D2014-08-29WWW File Share Pro v7.0 - Denial of Service Vulnerability4.2Remote5647Ateeq Khan
D2014-04-07BlueMe Bluetooth v5.0 iOS - Code Execution Vulnerability8.2Remote8522Vulnerability-Lab
D2014-04-06Bluetooth Text Chat v1.0 iOS - Code Execution Vulnerability8.1Remote8739Benjamin K.M.
D2013-10-25Feeder.co RSS Feeder 5.2 Chrome - Persistent Vulnerability3.8Remote9288Ateeq Khan
D2013-01-28nCircle PureCloud Vulnerability Scanner - Vulnerabilities4.1Remote11245Benjamin K.M.
D2012-11-13LAN.FS Messenger v2.4 - Command Execution Vulnerability8.2Remote11287Vulnerability-Lab
D2012-10-20Internet Explorer 9.10 - XSS Protection Filter Vulnerabilities6.4Remote5803N/A - Anonymous

[ Local Vulnerabilities ]

D2015-06-29Blueberry Express v5.9.x - Buffer Overflow Vulnerability6.4Local460Ateeq Khan
D2015-06-051 Click Extract Audio v2.3.6 - Activex Buffer Overflow6.1Local945metacom
D2015-06-041 Click Audio Converter v2.3.6 - Activex Buffer Overflow6.1Local877metacom
D2015-06-03Jildi FTP Client 1.5.2 b1138 - Buffer Overflow Vulnerability6.2Remote886metacom
D2015-06-01WebDrive 12.2 (B4172) - Buffer Overflow Vulnerability6.8Remote912metacom
D2015-05-19Eisbär SCADA (All Versions) - Persistent UI Vulnerability5.2Local2625Vulnerability-Lab
D2015-05-19Staff FTP v3.04 Software - DLL Hijacking Vulnerability6Local1208metacom
D2015-05-18WISE-FTP Software v8.0.2 - DLL Hijacking Vulnerability6Local1142metacom
D2015-05-04HUAWEI MobiConnect 23.9.17.216 - Privilege Escalation6.7Local7904Hadji Samir
D2015-03-02Apple iOS 8.0 - 8.0.2 - Controls Re Auth Bypass Vulnerability5.2Local12276Vulnerability-Lab
D2015-01-29T-Mobile Internet Manager - DLL Hijacking (mfc71enu.dll)5.6Local2937metacom
D2015-01-19iExplorer 3.6.3 - DLL Hijacking Exploit itunesmobiledevice.dll8Local4377Hadji Samir

[ Website Vulnerabilities ]

D2015-04-24Cisco (Newsroom) - CS Cross Site Scripting Vulnerability2.5Remote1379Hadji Samir
D2014-08-28Avira License - Cross Site Request Forgery Vulnerability3.4Remote6143Mazen Gamal
D2014-07-17Microsoft MSN HBE - TB Blind SQL Injection Vulnerability9.1Remote14214Ateeq Khan
D2014-06-17Secunia.com CSI/VIM - Persistent Validation Vulnerabilities3.9Remote8850Benjamin K.M.
D2014-03-05SonicWall Backend Server - CS Cross Site Web Vulnerability2Remote10392Benjamin K.M.
D2014-02-21CNNVD Gov CN #1 - Filter Bypass & Persistent Vulnerability5.5Remote10045Benjamin K.M.
D2013-12-11Microsoft PhotoStory - CS Cross Site Scripting Vulnerability2.1Remote9929Muhammad A.S.
D2013-11-28PressePortal DE - Remote SQL Injection Web Vulnerability8.7Remote9789Marco Onorati
D2013-09-25Adobe - CS Flash Cross Site Vulnerability & Filter Bypass2.1Remote10219Ateeq Khan
D2013-09-19Linkedin Social Network - CS Flash Cross Site Vulnerability 2.1Remote10344Ateeq Khan
D2013-08-28Department of Transport UK - SQL Injection Vulnerability8.6Remote10904Chokri B.A.
D2013-08-27UTA EDU University ENG - SQL Injection Vulnerability8.4Remote10114Chokri B.A.

[ IT-Security Documents ]

D2015-01-30Glibc Ghost Vulnerability (CVE-2015-0235) - How to Secure6.8Report2900Rajivarnan R.
D2014-07-29Wickr Announcement - Bug Bounty Program 2014RReport6676Wickr Security
D2014-05-12Vulnerable Workers in Uncertain Times - 4th Conference CFPRReport10325ADAPT IT
D2014-04-09HeartBleed SSL CVE 20140160 - 10 Steps to Fix in UbuntuRReport8457Vulnerability-Lab
D2014-03-26ES746 Support-Bulletin - EMS Vulnerability Resolved3.5Bulletins8266Vulnerability-Lab
D2014-03-13RFP - External Network Vulnerability Assessment & PenTestRReport8304Ismail Kaleem
D2014-01-31HackInTheBox Quartal Magazine - eZine Issue 10RMagazin8272HITB TEAM
D2013-05-28Filter Evasion and Bypass Methods - Pentest MagazineRReport14083Vulnerability-Lab
D2012-11-30HackInTheBox Quartal Magazine - eZine Issue 09RMagazin10824HITB TEAM
D2012-11-26Security in a serious way [THN] - eZine Issue 014RMagazin10568THN TEAM
D2012-06-16Malware Magazine [THN] - eZine Issue 012RMagazin11049THN TEAM
D2012-05-29Directory Traversal - Exploitation & Penetration StringsRSheets11096Vulnerability-Lab

[ IT-Security Videos ]

D2015-06-29Blueberry Express v5.9.x - Buffer Overflow Vulnerability6.4Local400Vulnerability-Lab
D2015-06-19Tango FTP Software v1.0 - Activex Heap Spray Exploit6.6Local404metacom
D2015-06-18Tango DropBox v3.1 PRO - ActiveX Heap Spray Exploit6.6Local325metacom
D2015-06-17Ebay Inc Magento #10 - Persistent Filename Vulnerability3.7Remote3156Hadji Samir
D2015-06-16ZTE ZXV10 W300 v3.1.0c_DR0 - UI Session Vulnerability6Remote409Vulnerability-Lab
D2015-06-16Ebay Magento Bug Bounty #12 - CSRF MSG Vulnerability2.5Remote500Vulnerability-Lab
D2015-06-13Criminals Minds - S10 E3 HackInTheBox & Benjamin Mejri9.9TV Show234Vulnerability-Lab
D2015-06-09Heroku API - Re Auth Session Token Bypass Vulnerability6.1Offensiv14514Vulnerability-Lab
D2015-06-051 Click Extract Audio v2.3.6 - Activex Buffer Overflow6.1Local696metacom
D2015-06-051 Click Audio Converter v2.3.6 - Activex Buffer Overflow6.4Local756metacom
D2015-05-09Facebook #26 - Bypass & Exception Redirect Vulnerability5.6Remote1630Vulnerability-Lab
D2015-05-05Grindr Bug Bounty - Denial of Service Vulnerability3.3Remote945Vulnerability-Lab

[ Search ] [ News ] [ Submit ] [ Stats ] [ Team ] [ Partner ] [ Talks & Workshop ] [ Subscribe ] [ Customer ] [ Contact ] [ Impressum ]


[Statistics] [Hacktivity] [July] 3 Critical: 0 High: 0 Medium: 3 Low: 0 Best Researcher: [Hadji Samir] Threat:

© EVOLUTION SECURITY GmbH ™