Full Disclosure

Syndicate content
A public, vendor-neutral forum for detailed discussion of vulnerabilities and exploitation techniques, as well as tools, papers, news, and events of interest to the community. The relaxed atmosphere of this quirky list provides some comic relief and certain industry gossip. More importantly, fresh vulnerabilities sometimes hit this list many hours or days before they pass through the Bugtraq moderation queue.
Updated: 14 min 13 sec ago

Cross-Site Scripting in Contact Bank WordPress Plugin

1 August, 2016 - 02:12

Posted by Summer of Pwnage on Aug 01

------------------------------------------------------------------------
Cross-Site Scripting in Contact Bank WordPress Plugin
------------------------------------------------------------------------
Yorick Koster, July 2016

------------------------------------------------------------------------
Abstract
------------------------------------------------------------------------
A Cross-Site Scripting vulnerability was found in the Contact Bank...

SQL injection vulnerability in Booking Calendar WordPress Plugin

1 August, 2016 - 02:11

Posted by Summer of Pwnage on Aug 01

------------------------------------------------------------------------
SQL injection vulnerability in Booking Calendar WordPress Plugin
------------------------------------------------------------------------
Edwin Molenaar, July 2016

------------------------------------------------------------------------
Abstract
------------------------------------------------------------------------
An SQL injection vulnerability exists in the Booking...

Cross-Site Scripting vulnerability in Booking Calendar WordPress Plugin

1 August, 2016 - 02:11

Posted by Summer of Pwnage on Aug 01

------------------------------------------------------------------------
Cross-Site Scripting vulnerability in Booking Calendar WordPress Plugin
------------------------------------------------------------------------
Edwin Molenaar, July 2016

------------------------------------------------------------------------
Abstract
------------------------------------------------------------------------
A Cross-Site Scripting vulnerability was found in...

Multiple vulnerabilities in All In One WP Security & Firewall plugin login CAPTCHA

31 July, 2016 - 07:40

Posted by Summer of Pwnage on Jul 31

------------------------------------------------------------------------
Multiple vulnerabilities in All In One WP Security & Firewall plugin
login CAPTCHA
------------------------------------------------------------------------
Sipke Mellema, July 2016

------------------------------------------------------------------------
Abstract
------------------------------------------------------------------------
The login CAPTCHA provided by the...

Stored Cross-Site Scripting vulnerability in Easy Testimonials WordPress Plugin

31 July, 2016 - 07:39

Posted by Summer of Pwnage on Jul 31

------------------------------------------------------------------------
Stored Cross-Site Scripting vulnerability in Easy Testimonials WordPress
Plugin
------------------------------------------------------------------------
Bente Schopman, July 2016

------------------------------------------------------------------------
Abstract
------------------------------------------------------------------------
Multiple stored Cross-Site Scripting...

Insert PHP WordPress Plugin allows authenticated user to execute arbitrary PHP

31 July, 2016 - 07:38

Posted by Summer of Pwnage on Jul 31

------------------------------------------------------------------------
Insert PHP WordPress Plugin allows authenticated user to execute
arbitrary PHP
------------------------------------------------------------------------
Marcel Vermeulen <vermeulen.mc.at.gmail.com> & Ed van der Vlies
<ecvdvlies.at.gmail.com>, July 2016

------------------------------------------------------------------------
Abstract...

ZMS v3.2 CMS - Multiple Client Side Cross Site Scripting Web Vulnerabilities

29 July, 2016 - 05:11

Posted by Vulnerability Lab on Jul 29

Document Title:
===============
ZMS v3.2 CMS - Multiple Client Side Cross Site Scripting Web Vulnerabilities

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1890

Release Date:
=============
2016-07-28

Vulnerability Laboratory ID (VL-ID):
====================================
1890

Common Vulnerability Scoring System:
====================================
3.3

Product & Service Introduction:...

Saveya Bounty #1 - Bypass & Persistent Vulnerability

28 July, 2016 - 05:05

Posted by Vulnerability Lab on Jul 28

Document Title:
===============
Saveya Bounty #1 - Bypass & Persistent Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1857

SaveYa ID: 56

Acknowledgements: https://www.saveya.com/white-hat-program-acknowledgements

Release Date:
=============
2016-07-26

Vulnerability Laboratory ID (VL-ID):
====================================
1857

Common Vulnerability Scoring System:...

Zoll Checklist v1.2.2 iOS - Multiple Persistent Vulnerabilities

28 July, 2016 - 05:02

Posted by Vulnerability Lab on Jul 28

Document Title:
===============
Zoll Checklist v1.2.2 iOS - Multiple Persistent Vulnerabilities

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1881

Release Date:
=============
2016-07-27

Vulnerability Laboratory ID (VL-ID):
====================================
1881

Common Vulnerability Scoring System:
====================================
3.6

Product & Service Introduction:...

Exponent CMS 2.3.9 - Useraccounts Persistent Vulnerability

28 July, 2016 - 04:59

Posted by Vulnerability Lab on Jul 28

Document Title:
===============
Exponent CMS 2.3.9 - Useraccounts Persistent Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1886

Release Date:
=============
2016-07-27

Vulnerability Laboratory ID (VL-ID):
====================================
1886

Common Vulnerability Scoring System:
====================================
4.5

Product & Service Introduction:...

Zortam Media Studio 20.60 - Buffer Overflow Vulnerability

28 July, 2016 - 04:57

Posted by Vulnerability Lab on Jul 28

Document Title:
===============
Zortam Media Studio 20.60 - Buffer Overflow Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1884

Release Date:
=============
2016-07-27

Vulnerability Laboratory ID (VL-ID):
====================================
1884

Common Vulnerability Scoring System:
====================================
6.5

Product & Service Introduction:...

VUPlayer 2.49 - (.wax) Buffer Overflow Vulnerability

27 July, 2016 - 03:43

Posted by Vulnerability Lab on Jul 27

Document Title:
===============
VUPlayer 2.49 - (.wax) Buffer Overflow Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1877

Release Date:
=============
2016-07-26

Vulnerability Laboratory ID (VL-ID):
====================================
1877

Common Vulnerability Scoring System:
====================================
6.4

Product & Service Introduction:...

VUPlayer 2.49 - (.pls) Buffer Overflow Vulnerability

27 July, 2016 - 03:41

Posted by Vulnerability Lab on Jul 27

Document Title:
===============
VUPlayer 2.49 - (.pls) Buffer Overflow Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1876

Release Date:
=============
2016-07-25

Vulnerability Laboratory ID (VL-ID):
====================================
1876

Common Vulnerability Scoring System:
====================================
6.4

Product & Service Introduction:...

DornCMS v1.4 - (FileManager) Persistent Cross Site Scripting Vulnerability

27 July, 2016 - 03:40

Posted by Vulnerability Lab on Jul 27

Document Title:
===============
DornCMS v1.4 - (FileManager) Persistent Cross Site Scripting Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1885

Release Date:
=============
2016-07-26

Vulnerability Laboratory ID (VL-ID):
====================================
1885

Common Vulnerability Scoring System:
====================================
4.3

Product & Service Introduction:...

Nusiorung CMS 2016 - (Login) Auth Bypass Vulnerability

27 July, 2016 - 03:37

Posted by Vulnerability Lab on Jul 27

Document Title:
===============
Nusiorung CMS 2016 - (Login) Auth Bypass Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1875

Release Date:
=============
2016-07-13

Vulnerability Laboratory ID (VL-ID):
====================================
1875

Common Vulnerability Scoring System:
====================================
7.6

Abstract Advisory Information:
==============================...

Cross-Site Scripting vulnerability in ColorWay WordPress Theme

26 July, 2016 - 13:10

Posted by Summer of Pwnage on Jul 26

------------------------------------------------------------------------
Cross-Site Scripting vulnerability in ColorWay WordPress Theme
------------------------------------------------------------------------
Yorick Koster, July 2016

------------------------------------------------------------------------
Abstract
------------------------------------------------------------------------
Multiple Cross-Site Scripting vulnerabilities were found in...

Bellini/Supercook Wi-Fi Yumi SC200 - Multiple vulnerabilities

25 July, 2016 - 08:06

Posted by James McLean on Jul 25

Bellini/Supercook Wi-Fi Yumi SC200 - Multiple vulnerabilities

Reported By:
==================================
James McLean -
Primary: james dot mclean at gmail dot com
Secondary: labs at juicedigital dot net

Device Overview:
==================================

"The Bellini.SUPERCOOK Kitchen Master is much more than a multifunctional
kitchen machine. It has 13 functions so not only saves a huge amount of
time, it also incorporates the...

XSS and SQLi in huge IT gallery v1.1.5 for Joomla

25 July, 2016 - 08:06

Posted by Larry W. Cashdollar on Jul 25

Title: XSS and SQLi in huge IT gallery v1.1.5 for Joomla
Fixed: v1.1.7
Author: Larry W. Cashdollar, @_larry0 and Elitza Neytcheva, @ElitzaNeytcheva
Date: 2016-07-14
Download Site: http://extensions.joomla.org/extensions/extension/photos-a-images/galleries/gallery-pro
Vendor: huge-it.com
Vendor Notified: 2016-07-15, fixed 2016-07-23
Vendor Contact: info () huge-it com
Description: The plugin allows you to add multiple images to the gallery, create...

Amazon’s Silk Browser on the Kindle Didn’t Use SSL for Google Search

25 July, 2016 - 08:06

Posted by Nightwatch Cybersecurity on Jul 25

[Original here:
https://wwws.nightwatchcybersecurity.com/2016/07/21/advisory-amazons-silk-browser-on-the-kindle-didnt-use-ssl-for-google-search/]

Overview

Amazon supplies the Silk Browser for their line of Kindle tablets. The
browser includes a selection of three search engines, of which Google
was setup without SSL. Furthermore, the browser prevented automatic
redirection to the SSL version of Google’s main site when visiting it
directly....

CVE-2016-5399: php: out-of-bounds write in bzread()

25 July, 2016 - 08:06

Posted by Hans Jerry Illikainen on Jul 25

PHP 7.0.8, 5.6.23 and 5.5.37 does not perform adequate error handling in
its `bzread()' function:

php-7.0.8/ext/bz2/bz2.c
,----
| 364 static PHP_FUNCTION(bzread)
| 365 {
| ...
| 382 ZSTR_LEN(data) = php_stream_read(stream, ZSTR_VAL(data), ZSTR_LEN(data));
| 383 ZSTR_VAL(data)[ZSTR_LEN(data)] = '\0';
| 384
| 385 RETURN_NEW_STR(data);
| 386 }
`----

php-7.0.8/ext/bz2/bz2.c
,----
| 210 php_stream_ops php_stream_bz2io_ops...