Full Disclosure

Syndicate content
A public, vendor-neutral forum for detailed discussion of vulnerabilities and exploitation techniques, as well as tools, papers, news, and events of interest to the community. The relaxed atmosphere of this quirky list provides some comic relief and certain industry gossip. More importantly, fresh vulnerabilities sometimes hit this list many hours or days before they pass through the Bugtraq moderation queue.
Updated: 1 day 4 hours ago

CVE-2016-6526 Possible Privilege Escalation in telecom of Samsung Mobile Phone

5 August, 2016 - 18:50

Posted by 0xr0ot on Aug 05

Description of the potential vulnerability:
Severity: Medium
Affected versions: L(5.0/5.1), M(6.0)
Reported on: May 11, 2016
Disclosure status: Privately disclosed.
A vulnerability in SpamCall Activity components of Telecom application can
make crash and reboot a device when the malformed serializable object is
passed.

Fix:
http://security.samsungmobile.com/smrupdate.html#SMR-AUG-2016
SVE-2016-6242: Possible Privilege Escalation in telecom...

[SYSS-2016-065] NASdeluxe NDL-2400r: OS Command Injection

5 August, 2016 - 18:49

Posted by Klaus Eisentraut (SySS GmbH) on Aug 05

Advisory ID: SYSS-2016-065

Product: NASdeluxe NDL-2400r

Vendor: Starline Computer GmbH

Affected Version(s): 2.01.10

Tested Version(s): 2.01.09

Vulnerability Type: OS Command Injection (CWE-78)

Risk Level: High

Solution Status: no fix (product has reached EOL since 3 years)

Vendor Notification: 2016-07-04

Public Disclosure: 2016-08-03

CVE Reference: Not assigned

Author of Advisory: Klaus Eisentraut, SySS GmbH,...

D-Link NAS, DNS Series: Stored XSS via Unauthenticated SMB

5 August, 2016 - 18:49

Posted by Benjamin Daniel Mussler on Aug 05

D-Link NAS, DNS Series: Stored XSS via Unauthenticated SMB
<http://b.fl7.de/2016/08/d-link-nas-dns-xss-via-smb.html>

1. Affected Models/Versions
2. Summary
3. Technical Summary
4. Vulnerability Details
5. Exploitation / Proof of Concept
6. Timeline
7. See Also

########## 1. Affected Models/Versions ##########

The vulnerability was initially discovered on a **D-Link DNS-320 rev A**
device running **firmware version 2.05b8** (also known...

Kaspersky Safe Browser iOS Application - MITM SSL Certificate Vulnerability (CVE-2016-6231)

5 August, 2016 - 18:49

Posted by David Coomber on Aug 05

Kaspersky Safe Browser iOS Application - MITM SSL Certificate
Vulnerability (CVE-2016-6231)

Ecwid Ecommerce Shopping Cart WordPress Plugin unauthenticated PHP Object injection vulnerability

5 August, 2016 - 12:33

Posted by Summer of Pwnage on Aug 05

------------------------------------------------------------------------
Ecwid Ecommerce Shopping Cart WordPress Plugin unauthenticated PHP
Object injection vulnerability
------------------------------------------------------------------------
Yorick Koster, June 2016

------------------------------------------------------------------------
Abstract
------------------------------------------------------------------------
A PHP Object injection...

Cross-Site Scripting in Store Locator Plus for WordPress

5 August, 2016 - 12:32

Posted by Summer of Pwnage on Aug 05

------------------------------------------------------------------------
Cross-Site Scripting in Store Locator Plus for WordPress
------------------------------------------------------------------------
Yorick Koster, July 2016

------------------------------------------------------------------------
Abstract
------------------------------------------------------------------------
A Cross-Site Scripting vulnerability was found in Store Locator...

DLL side loading vulnerability in VMware Host Guest Client Redirector

5 August, 2016 - 11:56

Posted by Securify B.V. on Aug 05

------------------------------------------------------------------------
DLL side loading vulnerability in VMware Host Guest Client Redirector
------------------------------------------------------------------------
Yorick Koster, December 2015

------------------------------------------------------------------------
Abstract
------------------------------------------------------------------------
A DLL side loading vulnerability was found in the...

FortiCloud - (Reports Summary) Multiple Persistent Vulnerabilities

5 August, 2016 - 02:31

Posted by Vulnerability Lab on Aug 05

Document Title:
===============
FortiCloud - (Reports Summary) Multiple Persistent Vulnerabilities

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1735

Release Date:
=============
2016-08-05

Vulnerability Laboratory ID (VL-ID):
====================================
1735

Common Vulnerability Scoring System:
====================================
3.6

Product & Service Introduction:...

Subrion v4.0.5 CMS - SQL Injection Vulnerability

5 August, 2016 - 02:28

Posted by Vulnerability Lab on Aug 05

Document Title:
===============
Subrion v4.0.5 CMS - SQL Injection Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1893

Release Date:
=============
2016-08-04

Vulnerability Laboratory ID (VL-ID):
====================================
1893

Common Vulnerability Scoring System:
====================================
7

Product & Service Introduction:
===============================...

Typesettercms v5.0.1 - (Delete Files) CSRF Vulnerability

5 August, 2016 - 02:26

Posted by Vulnerability Lab on Aug 05

Document Title:
===============
Typesettercms v5.0.1 - (Delete Files) CSRF Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1889

Release Date:
=============
2016-08-03

Vulnerability Laboratory ID (VL-ID):
====================================
1889

Common Vulnerability Scoring System:
====================================
3

Product & Service Introduction:...

Stored Cross-Site Scripting vulnerability in Count per Day WordPress Plugin

4 August, 2016 - 12:37

Posted by Summer of Pwnage on Aug 04

------------------------------------------------------------------------
Stored Cross-Site Scripting vulnerability in Count per Day WordPress
Plugin
------------------------------------------------------------------------
Julien Rentrop, July 2016

------------------------------------------------------------------------
Abstract
------------------------------------------------------------------------
A Cross-Site Scripting vulnerability was found...

Cross-Site Scripting in Count per Day WordPress Plugin

4 August, 2016 - 12:37

Posted by Summer of Pwnage on Aug 04

------------------------------------------------------------------------
Cross-Site Scripting in Count per Day WordPress Plugin
------------------------------------------------------------------------
Yorick Koster, July 2016

------------------------------------------------------------------------
Abstract
------------------------------------------------------------------------
A Cross-Site Scripting vulnerability was found in the Count per Day...

Cross-Site Scripting in FormBuilder WordPress Plugin

4 August, 2016 - 12:36

Posted by Summer of Pwnage on Aug 04

------------------------------------------------------------------------
Cross-Site Scripting in FormBuilder WordPress Plugin
------------------------------------------------------------------------
Peter Ganzevles, July 2016

------------------------------------------------------------------------
Abstract
------------------------------------------------------------------------
A Reflected Cross-Site Scripting (XSS) vulnerability has been found...

Cross-Site Scripting vulnerability in Events Made Easy WordPress plugin

4 August, 2016 - 12:36

Posted by Summer of Pwnage on Aug 04

------------------------------------------------------------------------
Cross-Site Scripting vulnerability in Events Made Easy WordPress plugin
------------------------------------------------------------------------
Job Diesveld, July 2016

------------------------------------------------------------------------
Abstract
------------------------------------------------------------------------
A Cross-Site Scripting vulnerability has been found...

FortiManager (Series) - (Bookmark) Persistent Vulnerability

4 August, 2016 - 02:58

Posted by Vulnerability Lab on Aug 04

Document Title:
===============
FortiManager (Series) - (Bookmark) Persistent Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1685

Fortinet PSIRT ID: 1624461

Release Notes 1: http://docs.fortinet.com/uploaded/files/2499/fortios-5.0.12-release-notes.pdf
Release Notes 2: http://docs.fortinet.com/uploaded/files/2861/fortios-v5.2.6-release-notes.pdf
Release Notes 3:...

FortiAnalyzer & FortiManager - Client Side Cross Site Scripting Web Vulnerability

4 August, 2016 - 02:54

Posted by Vulnerability Lab on Aug 04

Document Title:
===============
FortiAnalyzer & FortiManager - Client Side Cross Site Scripting Web Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1686

Fortinet PSIRT ID: 1624489

Release Notes 1: http://docs.fortinet.com/uploaded/files/2861/fortios-v5.2.6-release-notes.pdf
Release Notes 2: http://docs.fortinet.com/uploaded/files/3075/fortios-v5.4.1-release-notes.pdf
Release Notes...