CVE-2016-4027

An issue was discovered in Open-Xchange OX App Suite before 7.8.1-rev10. App Suite frontend offers to control whether a user wants to store cookies that exceed the session duration. This functionality is useful when logging in from clients with reduced privileges or shared environments. However t...

CVE-2016-4027

An issue was discovered in Open-Xchange OX App Suite before 7.8.1-rev10. App Suite frontend offers to control whether a user wants to store cookies that exceed the session duration. This functionality is useful when logging in from clients with reduced privileges or shared environments. However t...

Real Time Performance Monitoring: netdata

Real Time Performance Monitoring Netdata is a daemon that collects data in realtime per second and presents a web site to view and analyze them. The presentation is also real-time and full of interactive charts that precisely render all collected values. netdata is the fastest way to visualize...

Hashcat v3.20 - World's Fastest and Most Advanced Password Recovery Utility

hashcat is the world's fastest and most advanced password recovery utility, supporting five unique modes of attack for over 160 highly-optimized hashing algorithms. hashcat currently supports CPU's, GPU's other hardware-accelerators on Linux, Windows and OSX, and has facilities to help enable...

gre.wgw.interactivebrokers.com XSS vulnerability

Vulnerable URL: https://gre.wgw.interactivebrokers.com/webtrader/redirect.jsp?regionalURL="alert'OPENBUGBOUNTY'...

2016 Flare-On Challenge Solutions

I would like to thank the challenge authors this year: 1. Alexander Rich 2. Matt Williams @0xmwilliams 3. Dominik Weber 4. James T. Bennett @jtbennettjr 5. Tyler Dean 6. Josh Homan 7. Alex Berry 8. Nick Harbour @nickharbour 9. Jon Erickson @2130706433 10. FireEye Labs Advanced Vulnerability...

Interactive Disassembler: Plasma

Interactive disassembler for x86/ARM/MIPS. Generates indented pseudo-code with colored syntax code. PLASMA is an interactive disassembler. It can generate a more readable assembly pseudo code with colored syntax. You can write scripts with the available Python api. The project is still in big...

Vulnerability in packaging (CVE-2016-7048)

Interactive installer downloads software over plain HTTP, then executes it...

Flv Player 2011 1.3 DLL Hijacking

Document Title: =============== Flv Player 2011 v1.3 - DLL Hijacking Vulnerability Release Date: ============= 2016-09-23 Vulnerability Disclosure Timeline: ================================== 2016-09-30 : Public Disclosure Product & Service Introduction: =============================== FLV Player...

Ipod Video Converter DLL Hijacking

i?Document Title: =============== Ipod Video Converter - DLL Hijacking Vulnerability Release Date: ============= 2016-09-23 Vulnerability Disclosure Timeline: ================================== 2016-09-27 : Public Disclosure Product & Service Introduction: =============================== iPod Vid...

3GP Player 4.7.0 - DLL Hijacking Vulnerability

Document Title: =============== 3GP Player 4.7.0 - DLL Hijacking Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=1955 Release Date: ============= 2016-09-23 Vulnerability Laboratory ID VL-ID: ==================================== 1955 Commo...

3GP Player 4.7.0 - DLL Hijacking Vulnerability

Document Title: =============== 3GP Player 4.7.0 - DLL Hijacking Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=1955 Release Date: ============= 2016-09-22 Vulnerability Laboratory ID VL-ID: ==================================== 1955 Commo...

PT-2016-3442 · Postgresql · Postgresql

Name of the Vulnerable Software and Affected Versions: PostgreSQL versions prior to 9.3.15 PostgreSQL versions 9.4.x prior to 9.4.10 PostgreSQL versions 9.5.x prior to 9.5.5 Description: The issue is related to the interactive installer in PostgreSQL, which might allow remote attackers to execute...

ipo.interactivebrokers.com XSS vulnerability

Vulnerable URL: https://ipo.interactivebrokers.com/mkt/reglp.php?href=Ij48c3ZnL29ubG9hZD1wcm9tcHQoL09QRU5CVUdCT1VOVFkvKT4= Details: Description| Value ---|--- Patched:| Yes, at 26.08.2016 Latest check for patch:| 26.08.2016 11:24 GMT Vulnerability type:| XSS Vulnerability status:| Publicly...

investors.interactivebrokers.com XSS vulnerability

Vulnerable URL: https://investors.interactivebrokers.com/mkt/reglp.php?href=Ij48c3ZnL29ubG9hZD1wcm9tcHQoL09QRU5CVUdCT1VOVFkvKT4= Details: Description| Value ---|--- Patched:| Yes, at 26.08.2016 Latest check for patch:| 26.08.2016 11:17 GMT Vulnerability type:| XSS Vulnerability status:| Publicly...

interactivebrokers.com.hk XSS vulnerability

Vulnerable URL: https://www.interactivebrokers.com.hk/mkt/reglp.php?href=Ij48c3ZnL29ubG9hZD1wcm9tcHQoL09QRU5CVUdCT1VOVFkvKT4= Details: Description| Value ---|--- Patched:| Yes, at 26.08.2016 Latest check for patch:| 26.08.2016 11:18 GMT Vulnerability type:| XSS Vulnerability status:| Publicly...

net2ftp 1.0 Cross Site Scripting

Summary Subject: net2ftp XSS in "command" and "urlwithpw" parameters Versions vulnerable: ALL Tested on latest, version 1.0 Category: 0-day Impact: Medium Description of the product net2ftp is a web based FTP client http://www.net2ftp.com/index.php . It can be used as a standalone version and als...

nightHawkResponse - Incident Response Forensic Framework

Custom built application for asynchronus forensic data presentation on an Elasticsearch backend. This application is designed to ingest a Mandiant Redline "collections" file and give flexibility in search/stack and tagging. The application was born out of the inability to control multiple...

Adobe Flash Player: Multiple vulnerabilities

Background The Adobe Flash Player is a renderer for the SWF file format, which is commonly used to provide interactive websites. Description Multiple vulnerabilities have been discovered in Adobe Flash Player. Please review the CVE identifiers referenced below for details. Impact A remote attacke...

git fixup: --amend for older commits

Everyone knows and loves to use git commit --amend to change the latest commit. But what if you want to correct a older commit? The flow in that case involves an interactive rebase with a edit step. But that's kludgy. Here's an alias that using a couple of nifty git features makes it one command...