Advisories archive

Vulnerabilities SummaryThe following advisory describes two vulnerabilities found in Synology PhotoStation, an unauthenticated SQL injection combined with an authenticated arbitrary
Vulnerability SummaryThe following advisory describes a vulnerability found in the Remote Procedure Call (RPC) component of the VxWorks real-time Opearting
Vulnerabilities SummaryThe following advisory discusses an arbitrary file injection vulnerability that leads to remote code execution in Horde Groupware Webmail.
AbstractSquirrelMail allows to display HTML messages provided that non-safe fragments are redacted. An input sanitization vulnerability that can be exploited
Vulnerabilities SummaryThe following advisory describes two XSS vulnerabilities found in MDaemon Mail Server which lets attackers send emails with malicious
(This advisory follows up on a presentation provided during our offensive security event in 2018 in Hong Kong - come
Vulnerabilities SummaryCisco Identity Services Engine (ISE) contains three vulnerabilities that when exploited allow an unauthenticated attacker to achieve root privileges
Vulnerabilities SummaryThe following advisory describes a vulnerability in SME Server 9.2, which lets an unauthenticated attackers perform XSS attack that
Vulnerabilities SummaryThe following advisory discusses a vulnerability found in Apache OpenOffice. The vulnerability lays inside the part that responsible for
Vulnerabilities Summary The following advisory discusses a bug found in the kernel function task_inspect which a local user may exploit