CVE-2017-20204

DBLTek GoIP devices models GoIP 1, 4, 8, 16, and 32 contain an undocumented vendor backdoor in the Telnet administrative interface that allows remote authentication as an undocumented user via a proprietary challenge–response scheme which is fundamentally flawed. Because the challenge response ca...

EUVD-2017-18921

DBLTek GoIP devices models GoIP 1, 4, 8, 16, and 32 contain an undocumented vendor backdoor in the Telnet administrative interface that allows remote authentication as an undocumented user via a proprietary challenge–response scheme which is fundamentally flawed. Because the challenge response ca...

EUVD-2016-2016

Malware in sbrugna...

CVE-2016-11027

An issue was discovered on Samsung mobile devices with M6.0 software. In the Shade Locked state, a physically proximate attacker can read notifications on the lock screen. The Samsung ID is SVE-2016-7132 December 2016...

CVE-2016-11026

An issue was discovered on Samsung mobile devices with KK4.4, L5.0/5.1, and M6.0 software. BootReceiver allows attackers to trigger a system crash because of incorrect exception handling. The Samsung ID is SVE-2016-7118 December 2016...

December, 2016 Security and Quality Rollup for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1 on Windows Embedded 8 Standard (KB3205403)

A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article...

November 2016 Preview of Quality Rollup for the .NET Framework 3.5.1, 4.5.2, 4.6, 4.6.1 on Windows 7 SP1 and Windows Server 2008 R2 SP1 (KB3196686)

November 2016 Preview of Quality Rollup for the .NET Framework 3.5.1, 4.5.2, 4.6, 4.6.1 on Windows 7 SP1 and Windows Server 2008 R2 SP1 KB3196686 This update is superseded by the December 13, 2016, Quality Rollup 3205402. Note There is a known issue in this update. For more information, see KB...

poringa.net XSS vulnerability

Vulnerable URL: http://www.poringa.net/registro?email=xss%27%3E%20%3C/form%3E%3Cscript%3Ealert%22OPENBUGBOUNTY%22;%3C/script%3E=xss%27%3E%20%3C/form%3E%3Cscript%3Ealert%22OPENBUGBOUNTY%22;%3C/script%3E& Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017...

hr.a8.com XSS vulnerability

Vulnerable URL:...

professionalengineers.us XSS vulnerability

Vulnerable URL: https://www.professionalengineers.us/trainer-ar.php?trainerID=14=5=%22%3E%3Csvg/onload=alert/XSSPOSED/%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 1116956 VIP...

CVE-2016-1004

creationtimestamp| type| source ---|---|--- 2016-12-26 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/41688...

uakey.com.ua XSS vulnerability

Vulnerable URL: http://uakey.com.ua/index.php?search=%3C/script%3E%3Cimg%20src=x%20onerror=prompt/XSSPOSED/%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 975392 VIP website...

odishaonline.in Open Redirect vulnerability

Vulnerable URL: http://www.odishaonline.in/Account/Logout?u=https://www.openbugbounty.org Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank| 1768644 VIP website status:| No...

hls.harvard.edu XSS vulnerability

Open Bug Bounty ID: OBB-199622 Description| Value ---|--- Affected Website:| hls.harvard.edu Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

CVE-2016-7617

creationtimestamp| type| source ---|---|--- 2016-12-22 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/40952...

CVE-2016-7660

creationtimestamp| type| source ---|---|--- 2016-12-22 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/40959...

vladimir.ru5.info XSS vulnerability

Vulnerable URL: http://vladimir.ru5.info/search.php?txt=%3C%2Fscript%3E%3Cimg+src%3Dx+onerror%3Dprompt%28%2FXSSPOSED%2F%29%3E=14=10 Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank|...

tools.tracemyip.org Open Redirect vulnerability

Vulnerable URL: http://tools.tracemyip.org/IPv6-decimal-to-ip-converter/ Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website status:| No...

kvs.be XSS vulnerability

Vulnerable URL: http://kvs.be/nl/search/node/" Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 980594 VIP website status:| No Check kvs.be SSL connection:| Grade: A Coordinated...

CVE-2016-7661

creationtimestamp| type| source ---|---|--- 2016-12-16 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/40931 2016-12-22 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/40958...