fulldisclosure  

Messages by Thread

• [FD] SEC Consult SA-20250521-0 :: Multiple Vulnerabilities in eCharge Hardy Barth cPH2 and cPP2 charging stations SEC Consult Vulnerability Lab via Fulldisclosure
• [FD] Structured Query Language Injection in frappe.desk.reportview.get_list Endpoint in Frappe Framework Ron E
• [FD] SEC Consult SA-20250506-0 :: Honeywell MB Secure Authenticated Command Injection SEC Consult Vulnerability Lab via Fulldisclosure
• [FD] Unauthenticated Blind SQL Injection | RSI queue management system - V 3.0 | CVE-2025-26086 Shaikh Shahnawaz
• [FD] CVE-2025-30072 Tiiwee X1 Alarm System - Authentication Bypass by Capture-replay Sebastian Auwärter via Fulldisclosure
• [FD] SEC Consult SA-20250422-0:: Local Privilege Escalation via DLL Search Order Hijacking SEC Consult Vulnerability Lab via Fulldisclosure
• [FD] SEC Consult SA-20250429-0 :: Multiple Vulnerabilities in HP Wolf Security Controller and more SEC Consult Vulnerability Lab via Fulldisclosure
• [FD] Session Invalidation in Economizzer Allows Unauthorized Access After Logout Ron E
• [FD] Persistent Cross-Site Scripting in Economizzer Category Entry Ron E
• [FD] Persistent Cross-Site Scripting in Economizzer Cashbook Entry Ron E
• [FD] APPLE-SA-05-12-2025-9 Safari 18.5 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-05-12-2025-8 visionOS 2.5 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-05-12-2025-7 tvOS 18.5 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-05-12-2025-6 watchOS 11.5 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-05-12-2025-5 macOS Ventura 13.7.6 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-05-12-2025-4 macOS Sonoma 14.7.6 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-05-12-2025-3 macOS Sequoia 15.5 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-05-12-2025-2 iPadOS 17.7.7 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-05-12-2025-1 iOS 18.5 and iPadOS 18.5 Apple Product Security via Fulldisclosure
• [FD] [KIS-2025-02] Invision Community <= 5.0.6 (customCss) Remote Code Execution Vulnerability Egidio Romano
• [FD] secuvera-SA-2025-01: Privilege Escalation in Automic Automation Agent Unix Flo Schäfer via Fulldisclosure
• [FD] Microsoft Windows .XRM-MS File / NTLM Information Disclosure Spoofing hyp3rlinx
• [FD] [IWCC 2025] CfP: 14th International Workshop on Cyber Crime - Ghent, Belgium, Aug 11-14, 2025 Artur Janicki via Fulldisclosure
• [FD] Inedo ProGet Insecure Reflection and CSRF Vulnerabilities Daniel Owens via Fulldisclosure
• [FD] Microsoft ".library-ms" File / NTLM Information Disclosure (Resurrected 2025) hyp3rlinx
• [FD] Ruby on Rails Cross-Site Request Forgery Daniel Owens via Fulldisclosure
• [FD] HNS-2025-10 - HN Security Advisory - Local privilege escalation in Zyxel uOS Marco Ivaldi
• [FD] APPLE-SA-04-16-2025-4 visionOS 2.4.1 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-04-16-2025-3 tvOS 18.4.1 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-04-16-2025-2 macOS Sequoia 15.4.1 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-04-16-2025-1 iOS 18.4.1 and iPadOS 18.4.1 Apple Product Security via Fulldisclosure
• [FD] Stored XSS in "Message" Functionality - AlegroCartv1.2.9 Andrey Stoykov
• [FD] Business Logic Flaw: Price Manipulation - AlegroCartv1.2.9 Andrey Stoykov
• [FD] XSS via SVG Image Upload - AlegroCartv1.2.9 Andrey Stoykov
• [FD] BBOT 2.1.0 - Local Privilege Escalation via Malicious Module Execution Housma mardini
• [FD] [CVE-2025-32102, CVE-2025-32103] SSRF and Directory Traversal in CrushFTP 10.7.1 and 11.1.0 (as well as legacy 9.x) Rafael Pedrero
• [FD] [KIS-2025-01] UNA CMS <= 14.0.0-RC4 (BxBaseMenuSetAclLevel.php) PHP Object Injection Vulnerability Egidio Romano
• [FD] OXAS-ADV-2025-0001: OX App Suite Security Advisory Martin Heiland via Fulldisclosure
• [FD] 10 vulnerabilities in Brocade Fibre Channel switches Pierre Kim
• [FD] APPLE-SA-04-01-2025-1 watchOS 11.4 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-31-2025-11 visionOS 2.4 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-31-2025-4 iPadOS 17.7.6 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-31-2025-10 tvOS 18.4 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-31-2025-6 iOS 15.8.4 and iPadOS 15.8.4 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-31-2025-8 macOS Sonoma 14.7.5 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-31-2025-9 macOS Ventura 13.7.5 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-31-2025-7 macOS Sequoia 15.4 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-31-2025-5 iOS 16.7.11 and iPadOS 16.7.11 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-31-2025-3 iOS 18.4 and iPadOS 18.4 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-31-2025-2 Xcode 16.3 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-31-2025-1 Safari 18.4 Apple Product Security via Fulldisclosure
• [FD] 3 vulnerabilities in Palo Alto Deep Packet Inspection mechanism Pierre Kim
• [FD] Three bypasses of Ubuntu's unprivileged user namespace restrictions Qualys Security Advisory via Fulldisclosure
• [FD] SQL Injection in Admin Functionality - dolphin.prov7.4.2 Andrey Stoykov
• [FD] Stored XSS via Send Message Functionality - dolphin.prov7.4.2 Andrey Stoykov
• [FD] APPLE-SA-03-11-2025-4 visionOS 2.3.2 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-11-2025-3 macOS Sequoia 15.3.2 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-11-2025-2 iOS 18.3.2 and iPadOS 18.3.2 Apple Product Security via Fulldisclosure
  • Re: [FD] APPLE-SA-03-11-2025-2 iOS 18.3.2 and iPadOS 18.3.2 Nick Boyce
• [FD] APPLE-SA-03-11-2025-1 Safari 18.3.1 Apple Product Security via Fulldisclosure
• [FD] CVE-2019-16261 (UPDATE): Unauthenticated POST requests to Tripp Lite UPS Systems Lucas Lalumière
• [FD] Multiple sandbox escapes in asteval python sandboxing module areca-palm via Fulldisclosure
• [FD] SEC Consult SA-20250226-0 :: Multiple vulnerabilities in Siemens A8000 CP-8050 & CP-8031 PLC SEC Consult Vulnerability Lab via Fulldisclosure
• [FD] MitM attack against OpenSSH's VerifyHostKeyDNS-enabled client Qualys Security Advisory via Fulldisclosure
• [FD] Self Stored XSS - acp2sev7.2.2 Andrey Stoykov
• [FD] Python's official documentation contains textbook example of insecure code (XSS) Georgi Guninski
• [FD] Monero 18.3.4 zero-day DoS vulnerability has been dropped publicly on social network. upper.underflow via Fulldisclosure
• [FD] Netgear Router Administrative Web Interface Lacks Transport Encryption By Default Ryan Delaney via Fulldisclosure
  • Re: [FD] Netgear Router Administrative Web Interface Lacks Transport Encryption By Default Gynvael Coldwind
• [FD] [CVE-2024-54756] GZDoom <= 4.13.1 Arbitrary Code Execution via Malicious ZScript Gabriel Valachi via Fulldisclosure
• [FD] APPLE-SA-02-10-2025-2 iPadOS 17.7.5 Apple Product Security via Fulldisclosure
• [FD] CVE-2024-55447: Access Control in Paxton Net2 software (update) Jeroen Hermans via Fulldisclosure
• [FD] APPLE-SA-02-10-2025-1 iOS 18.3.1 and iPadOS 18.3.1 Apple Product Security via Fulldisclosure
• [FD] ChatGPT AI finds "security concern" (XSS) in DeepSeek's code Georgi Guninski
• [FD] KL-001-2025-002: Checkmk NagVis Remote Code Execution KoreLogic Disclosures via Fulldisclosure
• [FD] KL-001-2025-001: Checkmk NagVis Reflected Cross-site Scripting KoreLogic Disclosures via Fulldisclosure
• [FD] APPLE-SA-01-30-2025-1 GarageBand 10.4.12 Apple Product Security via Fulldisclosure
• [FD] Xinet Elegant 6 Asset Lib Web UI 6.1.655 / SQL Injection / Exploit Update Python3 hyp3rlinx
• [FD] Quorum onQ OS - 6.0.0.5.2064 | Reflected Cross Site Scripting (XSS) | CVE-2024-44449 Shaikh Shahnawaz
• [FD] Deepseek writes textbook insecure code in 2025-01-28 Georgi Guninski
• [FD] Text injection on https://www.google.com/sorry/index via ?q parameter (no XSS) David Fifield
  • Re: [FD] Text injection on https://www.google.com/sorry/index via ?q parameter (no XSS) David Fifield
  • Re: [FD] Text injection on https://www.google.com/sorry/index via ?q parameter (no XSS) David Fifield
• [FD] APPLE-SA-01-27-2025-9 Safari 18.3 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-01-27-2025-8 tvOS 18.3 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-01-27-2025-7 watchOS 11.3 Apple Product Security via Fulldisclosure
• [FD] SEC Consult SA-20250127-0 :: Weak Password Hashing Algorithms in Wind River Software VxWorks RTOS SEC Consult Vulnerability Lab via Fulldisclosure
• [FD] APPLE-SA-01-27-2025-6 macOS Ventura 13.7.3 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-01-27-2025-5 macOS Sonoma 14.7.3 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-01-27-2025-4 macOS Sequoia 15.3 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-01-27-2025-3 iPadOS 17.7.4 Apple Product Security via Fulldisclosure
• [FD] Host Header Injection - atutorv2.2.4 Andrey Stoykov
• [FD] APPLE-SA-01-27-2025-2 iOS 18.3 and iPadOS 18.3 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-01-27-2025-1 visionOS 2.3 Apple Product Security via Fulldisclosure
• [FD] AutoLib Software Systems OPAC Version.20.10 | Exposure of Sensitive Information | CVE-2024-48310 Shaikh Shahnawaz
• [FD] Reflected XSS - atutorv2.2.4 Andrey Stoykov
• [FD] CVE-2024-48463 Rodolfo Tavares via Fulldisclosure
• [FD] CyberDanube Security Research 20250107-0 | Multiple Vulnerabilities in ABB AC500v3 Thomas Weber | CyberDanube via Fulldisclosure
• [FD] Asterisk Security Release 22.1.1 Asterisk Development Team via Fulldisclosure
• [FD] Certified Asterisk Security Release certified-20.7-cert4 Asterisk Development Team via Fulldisclosure
• [FD] Certified Asterisk Security Release certified-18.9-cert13 Asterisk Development Team via Fulldisclosure
• [FD] Asterisk Security Release 18.26.1 Asterisk Development Team via Fulldisclosure
• [FD] [asterisk-dev] Asterisk Security Release 21.6.1 Asterisk Development Team
• [FD] [asterisk-dev] Asterisk Security Release 20.11.1 Asterisk Development Team
• [FD] Microsoft PlayReady - complete client identity compromise Security Explorations
• [FD] secuvera-SA-2024-02: Multiple Persistent Cross-Site Scritping (XSS) flaws in Drupal-Wiki Simon Bieber via Fulldisclosure
• [FD] OXAS-ADV-2024-0002: OX App Suite Security Advisory Martin Heiland via Fulldisclosure
• [FD] Microsoft PlayReady toolkit - codes release Security Explorations
• [FD] Live2D Cubism refusing to fix validation issue leading to heap corruption. PT via Fulldisclosure
• [FD] Microsoft PlayReady white-box cryptography weakness Security Explorations
• [FD] Defense in depth -- the Microsoft way (part 87): shipping more rotten software to billions of unsuspecting customers Stefan Kanthak
• [FD] Response to CVE-2023-26756 - Revive Adserver Matteo Beccati
• [FD] BACKDOOR.WIN32.DUMADOR.C / Remote Stack Buffer Overflow (SEH) malvuln
• [FD] SEC Consult SA-20240418-0 :: Broken authorization in Dreamehome app SEC Consult Vulnerability Lab via Fulldisclosure
• [FD] MindManager 23 - full disclosure Pawel Karwowski via Fulldisclosure
• [FD] CVE-2024-31705 V3locidad
• [FD] SEC Consult SA-20240411-0 :: Database Passwords in Server Response in Amazon AWS Glue SEC Consult Vulnerability Lab via Fulldisclosure
• [FD] [KIS-2024-03] Invision Community <= 4.7.16 (toolbar.php) Remote Code Execution Vulnerability Egidio Romano
• [FD] [KIS-2024-02] Invision Community <= 4.7.15 (store.php) SQL Injection Vulnerability Egidio Romano
• [FD] Multiple Issues in concretecmsv9.2.7 Andrey Stoykov
• [FD] OXAS-ADV-2024-0001: OX App Suite Security Advisory Martin Heiland via Fulldisclosure
• [FD] Trojan.Win32.Razy.abc / Insecure Permissions (In memory IPC) malvuln
• [FD] CVE-2023-27195: Broken Access Control - Registration Code in TM4Web v22.2.0 Clément Cruchet
• [FD] [CFP] IEEE CSR Workshop on Cyber Forensics& Advanced Threat Investigations in Emerging Technologies 2024 Andrew Zayine
• [FD] Backdoor.Win32.Agent.ju (PSYRAT) / Authentication Bypass RCE malvuln
• [FD] CVE-2024-30928: SQL Injection Vulnerability in DerbyNet v9.0 via 'classids' Parameter Valentin Lobstein via Fulldisclosure
• [FD] CVE-2024-30927: XSS Vulnerability in DerbyNet v9.0 via racer-results.php Valentin Lobstein via Fulldisclosure
• [FD] CVE-2024-30926: XSS Vulnerability in DerbyNet v9.0 via ./inc/kiosks.inc Valentin Lobstein via Fulldisclosure
• [FD] CVE-2024-30924: XSS Vulnerability in DerbyNet v9.0 via checkin.php Valentin Lobstein via Fulldisclosure
• [FD] CVE-2024-30923: SQL Injection in DerbyNet v9.0 via print/render/racer.inc Valentin Lobstein via Fulldisclosure
• [FD] CVE-2024-30922: SQL Injection in DerbyNet v9.0 via print/render/award.inc Valentin Lobstein via Fulldisclosure
• [FD] CVE-2024-30921: Unauthenticated XSS Vulnerability in DerbyNet v9.0 via photo.php Valentin Lobstein via Fulldisclosure
• [FD] CVE-2024-30920: XSS Vulnerability in DerbyNet v9.0 via render-document.php Valentin Lobstein via Fulldisclosure
• [FD] SCHUTZWERK-SA-2023-006: Arbitrary File Read via XML External Entities in Visual Planning Lennert Preuth via Fulldisclosure
• [FD] SCHUTZWERK-SA-2023-004: Authentication Bypass via Password Reset Functionality in Visual Planning Lennert Preuth via Fulldisclosure
• [FD] SCHUTZWERK-SA-2023-003: Authentication Bypass in Visual Planning REST API Lennert Preuth via Fulldisclosure
• [FD] Microsoft PlayReady deficiencies / content key sniffing on Windows Security Explorations
• [FD] Intel PowerGadget 3.6 Local Privilege Escalation Julian Horoszkiewicz via Fulldisclosure
• [FD] Application is Vulnerable to Session Fixation YOGESH BHANDAGE
• [FD] APPLE-SA-03-25-2024-1 Safari 17.4.1 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-25-2024-2 macOS Sonoma 14.4.1 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-25-2024-3 macOS Ventura 13.6.6 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-25-2024-4 iOS 17.4.1 and iPadOS 17.4.1 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-25-2024-5 iOS 16.7.7 and iPadOS 16.7.7 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-25-2024-6 visionOS 1.1.1 Apple Product Security via Fulldisclosure
• [FD] Escape sequence injection in util-linux wall (CVE-2024-28085) Skyler Ferrante (RIT Student) via Fulldisclosure
• [FD] Circontrol EV Charger vulnerabilities (CVE-2020-8006, CVE-2020-8007) Dariusz G
• [FD] Backdoor.Win32.Emegrab.b / Remote Stack Buffer Overflow (SEH) malvuln
• [FD] MetaFox Remote Shell Upload Exploit j0ck1ng@tempr.email
• [FD] SEC Consult SA-20240307-0 :: Local Privilege Escalation via writable files in Checkmk Agent (CVE-2024-0670) SEC Consult Vulnerability Lab, Research via Fulldisclosure
• [FD] HNS-2024-05 - HN Security Advisory - Multiple vulnerabilities in RT-Thread RTOS Marco Ivaldi
• [FD] APPLE-SA-03-12-2024-1 GarageBand 10.4.11 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-07-2024-7 visionOS 1.1 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-07-2024-6 tvOS 17.4 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-07-2024-5 watchOS 10.4 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-07-2024-4 macOS Monterey 12.7.4 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-07-2024-3 macOS Ventura 13.6.5 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-07-2024-2 macOS Sonoma 14.4 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-07-2024-1 Safari 17.4 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-05-2024-2 iOS 16.7.6 and iPadOS 16.7.6 Apple Product Security via Fulldisclosure
• [FD] APPLE-SA-03-05-2024-1 iOS 17.4 and iPadOS 17.4 Apple Product Security via Fulldisclosure
• [FD] Backdoor.Win32.Beastdoor.oq / Unauthenticated Remote Command Execution malvuln
• [FD] StimulusReflex CVE-2024-28121 lixts via Fulldisclosure
• [FD] [Full Disclosure] CVE-2024-25228: Unpatched Command Injection in Vinchin Backup & Recovery Versions 7.2 and Earlier Valentin Lobstein via Fulldisclosure
• [FD] KL-001-2024-004: Artica Proxy Loopback Services Remotely Accessible Unauthenticated KoreLogic Disclosures via Fulldisclosure
• [FD] KL-001-2024-003: Artica Proxy Unauthenticated File Manager Vulnerability KoreLogic Disclosures via Fulldisclosure
• [FD] KL-001-2024-002: Artica Proxy Unauthenticated PHP Deserialization Vulnerability KoreLogic Disclosures via Fulldisclosure
• [FD] KL-001-2024-001: Artica Proxy Unauthenticated LFI Protection Bypass Vulnerability KoreLogic Disclosures via Fulldisclosure
• [FD] SEC Consult SA-20240226-0 :: Local Privilege Escalation via DLL Hijacking in Qognify VMS Client Viewer SEC Consult Vulnerability Lab, Research via Fulldisclosure
• [FD] JetStream Smart Switch - TL-SG2210P v5.0/ Improper Access Control / CVE-2023-43318 Shaikh Shahnawaz
• [FD] Multiple XSS Issues in boidcmsv2.0.1 Andrey Stoykov
• [FD] XAMPP 5.6.40 - Error Based SQL Injection Andrey Stoykov
• [FD] BACKDOOR.WIN32.AGENT.AMT / Authentication Bypass malvuln
• [FD] Backdoor.Win32.Jeemp.c / Cleartext Hardcoded Credentials malvuln
• [FD] BACKDOOR.WIN32.AUTOSPY.10 / Unauthenticated Remote Command Execution malvuln
• [FD] BACKDOOR.WIN32.ARMAGEDDON.R / Hardcoded Cleartext Credentials malvuln
• [FD] Multilaser Router - Access Control Bypass through Cookie Manipulation - CVE-2023-38946 Vinícius Moraes
• [FD] Multilaser Router - Access Control Bypass through URL Manipulation - CVE-2023-38945 Vinícius Moraes
• [FD] Multilaser Router - Access Control Bypass through Header Manipulation - CVE-2023-38944 Vinícius Moraes
• [FD] SEC Consult SA-20240220-0 :: Multiple Stored Cross-Site Scripting Vulnerabilities in OpenOLAT (Frentix GmbH) SEC Consult Vulnerability Lab, Research via Fulldisclosure
• [FD] CVE-2024-24681: Insecure AES key in Yealink Configuration Encrypt Tool Jeroen J.A.W. Hermans via Fulldisclosure
• [FD] Microsoft Windows Defender / Backdoor:JS/Relvelshe.A / Detection Mitigation Bypass hyp3rlinx
• [FD] Microsoft Windows Defender / VBScript Detection Bypass hyp3rlinx
• [FD] Microsoft Windows Defender / Trojan.Win32/Powessere.G / Detection Mitigation Bypass Part 3 hyp3rlinx
• [FD] 44CON 2024 September 18th - 20th CFP Florent Daigniere via Fulldisclosure
• [FD] SEC Consult SA-20240212-0 :: Multiple Stored Cross-Site Scripting vulnerabilities in Statamic CMS SEC Consult Vulnerability Lab, Research via Fulldisclosure
• [FD] Stored XSS and RCE - adaptcmsv3.0.3 Andrey Stoykov
• [FD] OXAS-ADV-2023-0007: OX App Suite Security Advisory Martin Heiland via Fulldisclosure
• [FD] Android passkeys unexpectedly deleted or useless after sync Erik van Straten (FD)
• [FD] Buffer Overflow Vulnerabilities in KiTTY Start Duplicated Session Hostname (CVE-2024-25003) & Username (CVE-2024-25004) Variables Austin DeFrancesco via Fulldisclosure
• [FD] Command Injection Vulnerability in KiTTY Get Remote File Through SCP Input (CVE-2024-23749) Austin DeFrancesco via Fulldisclosure
• [FD] Microsoft Windows Defender / Trojan.Win32/Powessere.G / Detection Mitigation Bypass Part 2. hyp3rlinx
• [FD] Wyrestorm Apollo VX20 / Incorrect Access Control - Credentials Disclosure / CVE-2024-25735 hyp3rlinx
• [FD] Wyrestorm Apollo VX20 / Account Enumeration / CVE-2024-25734 hyp3rlinx
• [FD] Wyrestorm Apollo VX20 / Incorrect Access Control - DoS / CVE-2024-25736 hyp3rlinx
• [FD] IBM i Access Client Solutions / Remote Credential Theft / CVE-2024-22318 hyp3rlinx
• [FD] APPLE-SA-02-02-2024-1 visionOS 1.0.2 Apple Product Security via Fulldisclosure
• [FD] Out-of-bounds read & write in the glibc's qsort() Qualys Security Advisory via Fulldisclosure
• [FD] CVE-2023-6246: Heap-based buffer overflow in the glibc's syslog() Qualys Security Advisory via Fulldisclosure
• [FD] Research about usage & possible issues of the NVD Andreas Hammer

• Earlier messages