Asterisk 1.8.4 SIP Username Enumeration

Asterisk, sip response permit username identification through use REGISTER Author: francesco.tornieri "At" verona-wireless.net Summary: Sip responses permit user identification Release Date: 25/05/2011 Criticality level: Low Impact: Information leak Software: Asterisk 1.8.4 I try it to an...

Unfixed XSS vulnerability at waphost.no

Security researcher MasTer, has submitted on 25/05/2011 a cross-site-scripting XSS vulnerability affecting waphost.no, which at the time of submission ranked 18151765 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 11/12/2011. It is currently...