[MAGAZINE][GALLERY][BUG BOUNTY LIST][HACKTIVITY] | |
Account:[RegistrationRole:[Anonymous] Researcher: 1848 Advisories: 1138 Documents: 42 Videos: 242 Date: 13.04.2026 TZ: 15:38

[ Home ] [ Mobile ] [ Vendor ] [ Web-Application ] [ Remote ] [ Local ] [ Websites ] [ Documents ] [ Videos ] [ Search ] [ FAQ ]

DDateRAdvisory NameVSTypeViewsAuthor
D2022-02-18
 
Priceel CMS - Multiple Persistent Web Vulnerabilities5.3Remote35470Vulnerability-Lab
D2022-02-17
 
MartFury Marketplace - Cross Site Scripting Vulnerability5.5Remote35478Vulnerability-Lab
D2022-02-17
 
Vicidial v2.14-783a - (DB) SQL Injection Web Vulnerability7.3Remote36138Vulnerability-Lab
D2022-02-09
 
Wordpress v5.9 - Reflected Cross Site Web Vulnerability4.2Remote40436TaurusOmar
D2022-02-08
 
Car Portal Template - (Search) Persistent Web Vulnerability5.6Remote35948Vulnerability-Lab
D2022-01-21
 
uBidAuction v2.0.1 - Multiple XSS Web Vulnerabilities5.4Remote37309Vulnerability-Lab
D2022-01-12
 
Ametys v4.4.1 CMS - Cross Site Scripting Vulnerability5.2Remote38610Vulnerability-Lab
D2022-01-05
 
Affiliate Pro v1.7 - Multiple Cross Site Vulnerabilities5.1Remote34896Vulnerability-Lab
D2021-12-29
 
Rocket LMS v1.1 - (History) Persistent XSS Vulnerability5.4Remote33085Vulnerability-Lab
D2021-12-15
 
uDoctorAppointment v2.1.1 - Multiple XSS Vulnerabilities5Remote32162Vulnerability-Lab
D2021-12-15
 
Easy Cart Shopping Cart - (Search) Persistent Vulnerability5.1Remote32425Vulnerability-Lab
D2021-11-05
 
Payment Terminal 2.x & v3.x - Multiple XSS Vulnerabilities5.2Remote40918Vulnerability-Lab
Note: The web-application vulnerabilities section impact only web vulnerabilities in web-applications products or services.

DDateRAdvisory NameVSTypeViewsAuthor
D2020-04-27
 
File Explorer v1.4 iOS - Information Disclosure Vulnerability7Local23775Vulnerability-Lab
D2020-04-26
 
File Sharing&Chat v1.0 iOS - Denial of Service Vulnerability4Remote23610Vulnerability-Lab
D2020-04-26
 
Easy Transfer v1.7 iOS - Multiple Web Vulnerabilities7.1Remote24112Vulnerability-Lab
D2020-04-23
 
Air Sender v1.0.2 iOS - Arbitrary File Upload Vulnerability7.4Remote27921Vulnerability-Lab
D2020-04-22
 
SuperBackup v2.0.5 - Multiple Site Scripting Vulnerabilities4.3Remote27397Vulnerability-Lab
D2020-04-21
 
Air Share v1.2 iOS - Multiple Cross Site Web Vulnerabilities4.4Remote31006Vulnerability-Lab
D2020-04-20
 
Sky File v2.1.0 iOS - Multiple Web Vulnerabilities7.2Remote30528Vulnerability-Lab
D2020-04-19
 
Folder Lock v3.4.5 iOS - Multiple Web Vulnerabilities4.2Remote27377Vulnerability-Lab
D2020-04-16
 
Swift File Transfer Mobile - Multiple Web Vulnerabilities5Remote33992Vulnerability-Lab
D2020-04-15
 
SMACom v1.2.0 - Insecure Session Validation Vulnerability7.1Remote27030Vulnerability-Lab
D2020-04-15
 
Playable v9.18 iOS - Multiple Web Vulnerabilities7.3Remote30655Vulnerability-Lab
D2020-04-14
 
AirDisk Pro v5.5.3 iOS - Multiple Persistent Vulnerabilities4.5Remote36047Vulnerability-Lab
Note: The mobile vulnerabilities section impact vulnerabilities in operating systems, applications, software & hardware.

DDateRAdvisory NameVSTypeViewsAuthor
D2017-01-12
 
Huawei Flybox B660 - (POST SMS) CSRF Web Vulnerability4.4Remote50931S.AbenMassaoud
D2017-01-10
 
Huawei Flybox B660 - (POST Reboot) CSRF Vulnerability4.4Remote49906S.AbenMassaoud
D2016-11-28
 
Tenda, Dlink & Tplink TD-W8961ND - DHCP XSS Vulnerability3.5Remote60630Lawrence Amer
D2016-11-18
 
Huawei Flybox B660 Router - Auth Bypass Vulnerability7.4Remote50946S.AbenMassaoud
D2016-10-03
 
Tesla (S&X) - (Interface Pair) Code Execution Vulnerability7.6Remote33600Benjamin K.M.
D2016-10-01
 
Volkswagen (GTE&E) - (Interface Pair) Code Execution7.6Remote32834Benjamin K.M.
D2016-09-30
 
Microsoft Office 365 Word - Code Execution Vulnerability9.1Remote35180Vulnerability-Lab
D2016-07-05
 
Teampass 2.1.26 - Authenticated File Upload Vulnerability7.2Remote51139Peter Kok
D2016-07-04
 
Teampass v2.1.26 - Privilege Escalate Vulnerability5.6Remote48902Peter Kok
D2016-05-17
 
Teampass v2.1.25 - Unauthenticated Access Vulnerability6.8Remote51722Peter Kok
D2016-05-16
 
Teampass v2.1.25 - Arbitrary File Download Vulnerability8.1Remote52740Peter Kok
D2016-03-07
 
Yahoo Bug Bounty #37 - Sender Spoofing Vulnerability 3Remote54792Lawrence Amer
Note: The remote vulnerabilities section impact only remote exploitable vulnerabilities in software products or services.

DDateRAdvisory NameVSTypeViewsAuthor
D2018-11-21
 
Intel Media Server Studio - Improper Directory Permissions5.1Local31759S.AbenMassaoud
D2018-11-14
 
Intel Distribution Python (IDP) 2018 - Privilege Escalation6.3Local31238S.AbenMassaoud
D2018-11-13
 
Intel Extreme Tuning Utility 6.4.1.23 - DoS Vulnerability3.3Local31947S.AbenMassaoud
D2018-11-12
 
Intel OpenVINO 2018.1.x - Permissions Privilege Escalation5.3Local30705S.AbenMassaoud
D2018-10-24
 
Intel Quartus Family - Privilege Escalation Vulnerability7.8Local31180S.AbenMassaoud
D2018-10-14
 
EasyBoot v6.6.0.800 - (Function Key) Buffer Overflow6.7Local31760ZwX
D2018-10-11
 
EasyBoot v6.6.0.800 - (Title CD) Unicode Buffer Overflow6.5Local31763ZwX
D2018-10-04
 
Easy File Sharing WS v7.2 - (Domain Name) Buffer Overflow7.3Local31949ZwX
D2018-10-01
 
Easy File Sharing WS v7.2 - (UserId) Buffer Overflow6.4Local31991ZwX
D2018-08-26
 
R v3.4.4 Software - (SEH) Buffer Overflow Vulnerability6.5Local32119ZwX
D2018-07-29
 
Huawei Backup App v6.30.52.12.L - Session Vulnerability 5.9Local33479Vulnerability-Lab
D2018-07-22
 
SMPlayer 18.6.0 - Memory Corruption (DoS) Vulnerability4.4Local32468ZwX
Note: The local vulnerabilities section impact only the local exploitable vulnerabilities in software products or services.

DDateRAdvisory NameVSTypeViewsAuthor
D2018-07-17
 
Barracuda Cloud Control v3.020 - CS XSS Web Vulnerability4Remote37956Vulnerability-Lab
D2018-07-16
 
Barracuda Cloud Control 7.1.1.003 - XSS Web Vulnerability4Remote36365Benjamin K.M.
D2018-07-11
 
Barracuda ADC 5.x - Multiple Persistent Vulnerabilities4.4Remote37551Benjamin K.M.
D2018-07-09
 
Barracuda ADC 5.x - CS Cross Site Scripting Vulnerability4Remote37515Benjamin K.M.
D2018-07-08
 
Barracuda ADC 5.x - Filter Bypass & Persistent Vulnerability4.4Remote37344Benjamin K.M.
D2018-07-04
 
AT&T Bizcircle - Persistent Profile Cross Site Vulnerability4.6Remote36574Benjamin K.M.
D2018-06-26
 
ASUS WRT-AC66U 3.x - Cross Site Scripting Vulnerability3Local36467Lawrence Amer
D2018-06-25
 
PayPal Inc - Security Key Pin Approval & Expire Bypass4.3Remote36838Benjamin K.M.
D2018-06-21
 
PayPal (Notify) - Bypass & Persistent Web Vulnerability4.1Remote49052Benjamin K.M.
D2018-06-19
 
Magento Products T1 - Bypass & Persistent Vulnerability4.2Remote34340Vulnerability-Lab
D2018-06-17
 
Magento MarketPlace T1 - Bypass & Persistent Vulnerability4.2Remote33916Vulnerability-Lab
D2018-06-14
 
Shopify - (Applications) Privilege Escalation Vulnerability7.6Remote39378Vulnerability-Lab
Note: The vendor vulnerabilities section impact vulnerabilities in well-known or famous manufacturer products.

DDateRAdvisory NameVSTypeViewsAuthor
D2018-02-20
 
Geldkarte - transaktionsid Cross Site Scripting Vulnerability4.1Remote40450Marco Onorati
D2018-01-20
 
Acadmic Microsoft - (API) Filter Cross Site Vulnerability4Remote43321Lawrence Amer
D2018-01-19
 
Magento Commerce - CSRLF Web UI Security Vulnerability4.1Remote44450Vulnerability-Lab
D2018-01-07
 
MS Sharepoint 2013 - Limited Access Permission Bypass4.8Local41233Marco Marsala
D2018-01-04
 
Adobe CreativeCloud (Webform) - Persistent Vulnerability3.7Remote42238Vulnerability-Lab
D2018-01-03
 
Salesforce Force (EventRSVP) - Multiple Web Vulnerabilities3Remote38345Vulnerability-Lab
D2017-09-05
 
Microsoft Info - Filter Bypass & Persistent Vulnerability3.8Remote40798Benjamin K.M.
D2017-09-04
 
Telekom Prepaid Shop - Multiple Persistent Vulnerabilities4.3Remote40615Benjamin K.M.
D2017-08-15
 
Microsoft Resnet - DNS Configuration Web Vulnerability6.4Remote42139S.AbenMassaoud
D2017-06-11
 
123ContactForm - Cross Site Scripting Web Vulnerability3.3Remote43281ZwX
D2017-05-22
 
Lufthansa AG - (Limbo) Open Redirect Web Vulnerability2.8Remote42584Benjamin K.M.
D2017-05-02
 
Stanford University (MBC) - SQL Injection Web Vulnerability 7.1Remote43872Ahsan Tahir
Note: The website vulnerabilities section impact vulnerabilities in website services and well-known service applications.

DDateRAdvisory NameVSTypeViewsAuthor
D2015-01-30
 
Glibc Ghost Vulnerability (CVE-2015-0235) - How to SecureRReport69835Rajivarnan R.
D2014-07-29
 
Wickr Announcement - Bug Bounty Program 2014RReport70440Wickr Security
D2014-05-12
 
Vulnerable Workers in Uncertain Times - 4th Conference CFPRReport72929ADAPT IT
D2014-04-09
 
HeartBleed SSL CVE 20140160 - 10 Steps to Fix in UbuntuRReport71536Vulnerability-Lab
D2014-03-26
 
ES746 Support-Bulletin - EMS Vulnerability ResolvedRBulletins69838Vulnerability-Lab
D2014-03-13
 
RFP - External Network Vulnerability Assessment & PenTestRReport70070Ismail Kaleem
D2014-01-31
 
HackInTheBox Quartal Magazine - eZine Issue 10RMagazin69998HITB TEAM
D2013-05-28
 
Filter Evasion and Bypass Methods - Pentest MagazineRReport75764Vulnerability-Lab
D2012-11-30
 
HackInTheBox Quartal Magazine - eZine Issue 09RMagazin70209HITB TEAM
D2012-11-26
 
Security in a serious way [THN] - eZine Issue 014RMagazin69974THN TEAM
D2012-06-16
 
Malware Magazine [THN] - eZine Issue 012RMagazin69788THN TEAM
D2012-05-28
 
Ultimate Directory Traversal Attack Cheat SheetRSheets69857Vulnerability-Lab
Note: The documents section impact security reports, security analysis, vulnerability analysis or research reportages.

DDateRAdvisory NameVSTypeViewsAuthor
D2018-12-17
 
NetChat v7.8 - Persistent Cross Site Scripting Vulnerability4.3Local30210Vulnerability-Lab
D2018-11-07
 
Apple iOS v12.1 - Authentication Bypass Vulnerability6.3Local30128Vulnerability-Lab
D2018-10-25
 
Apple iOS 11.x & 12.x - Authentication Bypass Vulnerability6.3Local30480Vulnerability-Lab
D2018-10-24
 
Intel Quartus Family - Privilege Escalation Vulnerability7.8Local29432S.AbenMassaoud
D2018-10-01
 
Facebook - Instagram Business Access Token Demo PoC9.3Remote30097Vulnerability-Lab
D2018-10-01
 
Facebook - Instagram Business Access Token Vulnerability9.3Remote31269Vulnerability-Lab
D2018-09-18
 
Apple iOS 11.x - Webkit Filter Backdrop DoS Vulnerability4.1Remote30494Vulnerability-Lab
D2018-08-26
 
Anghami - Persistent Input Validation Vulnerability4.5Remote30509Vulnerability-Lab
D2018-08-20
 
GTA 5 Online Game - Timeout Sync Money Vulnerability4.7Remote30656Vulnerability-Lab
D2018-08-13
 
BMW ConnectedDrive - (Update) VIN Session Vulnerability6Remote31109Vulnerability-Lab
D2018-08-08
 
Facebook BB #71 - (API) UXSS via MS Internet Explorer 114.5Remote31104N/A - Anonymous
D2018-07-29
 
Huawei Backup App - Mobile Reset Session Vulnerability 5.9Local31067Vulnerability-Lab
Note: The security video section demonstrates live hacks, proof of concepts, reproduce videos & exploitation videos.

[ News ] [ Submit ] [ Statistics ] [ Team ] [ Partner ] [ Talks & Workshop ] [ Awards ] [ Customer ] [ Contact ] [ Impressum ]


[Statistics] [April] Critical: 0 High: 0 Medium: 0 Low: 0 Best Researcher: [Vulnerability-Lab] Threat Service:


© Evolution Security GmbH ™