[MAGAZINE][FORUM][GALLERY][BUG BOUNTY LIST][HACKTIVITY] | |
Account:[RegistrationRole:[Anonymous] Researcher: 1695 Advisories: 1092 Documents: 42 Videos: 241 Date: 16.06.2021 TZ: 18:18

[ Home ] [ Mobile ] [ Vendor ] [ Web-Application ] [ Remote ] [ Local ] [ Websites ] [ Documents ] [ Videos ] [ Search ] [ FAQ ]

DDateRAdvisory NameVSTypeViewsAuthor
D2020-05-09
 
cpCommerce v1.2.8 - (id_document) Blind SQL Injection7Remote7710Milad Karimi
D2020-05-08
 
Sellacious eCommerce - Multiple Persistent Vulnerabilities4.6Remote20504Vulnerability-Lab
D2020-05-07
 
Creative Zone - (id) Remote SQL Injection Vulnerability7.5Remote3555Bl4ck M4n
D2020-05-07
 
Wordpress Theme Dosimple v2.0 - XSS Web Vulnerability4Remote3633Milad Karimi
D2020-05-07
 
Tiny MySQL - Cross Site Scripting Vulnerability4Remote3503Milad Karimi
D2020-05-06
 
OpenZ v3.6.60 ERP - Employee Persistent XSS Vulnerability4.6Remote2704Vulnerability-Lab
D2020-05-06
 
KeeWeb v1.14.0 - (Notes) Html Inject Web Vulnerability4.2Remote1839Vulnerability-Lab
D2020-05-05
 
Sentrifugo v3.2 CMS - Persistent XSS Web Vulnerability4.6Remote1911Vulnerability-Lab
D2020-05-04
 
Fishing Reservation System - SQL Injection Vulnerabilities7.5Remote2203Vulnerability-Lab
D2020-05-03
 
Joomla com_content 1.5 - Blind SQL Injection Vulnerability7.5Remote2553Milad Karimi
D2020-05-02
 
iJoomla com_adagency 6.0.9 - SQL Injection Vulnerabilities7.4Remote2938Milad Karimi
D2020-04-30
 
POS PHP v17.5 - (Employees) Persistent Web Vulnerability4.6Remote1461Vulnerability-Lab
Note: The web-application vulnerabilities section impact only web vulnerabilities in web-applications products or services.

DDateRAdvisory NameVSTypeViewsAuthor
D2020-04-20
 
Folder Lock v3.4.5 iOS - Multiple Web Vulnerabilities4.2Remote2177Vulnerability-Lab
D2020-04-17
 
Swift File Transfer Mobile - Multiple Web Vulnerabilities5Remote1854Vulnerability-Lab
D2020-04-16
 
Playable v9.18 iOS - Multiple Web Vulnerabilities7.3Remote1790Vulnerability-Lab
D2020-04-16
 
SMACom v1.2.0 - Insecure Session Validation Vulnerability7.1Remote1916Vulnerability-Lab
D2020-04-15
 
SuperBackup v2.0.5 iOS - VCF Persistent XSS Vulnerability4.6Remote1808Vulnerability-Lab
D2020-04-15
 
AirDisk Pro v5.5.3 iOS - Multiple Persistent Vulnerabilities4.5Remote4710Vulnerability-Lab
D2020-04-14
 
File Transfer iFamily 2.1 - Directory Traversal Vulnerability7.1Remote3605Vulnerability-Lab
D2018-01-16
 
Photo Vault 1.2 iOS - Insecure Authentication Vulnerability4.8Local23577Benjamin K.M.
D2018-01-04
 
Photos in Wifi 1.0.1 iOS - Path Traversal Web Vulnerability6.5Remote25969Benjamin K.M.
D2018-01-03
 
Wincor Nixdorf PC/E Mobile Cash TryOut - API Vulnerability3.1Remote18017Vulnerability-Lab
D2017-02-23
 
Super File Explorer 1.0.1 - File Upload Web Vulnerability7Remote31604Benjamin K.M.
D2017-02-22
 
Air Transfer 1.2.1 & 1.0.14 - Multiple XSS Vulnerabilities4Remote27294Vulnerability-Lab
Note: The mobile vulnerabilities section impact vulnerabilities in operating systems, applications, software & hardware.

DDateRAdvisory NameVSTypeViewsAuthor
D2016-11-18
 
Huawei Flybox B660 Router - Auth Bypass Vulnerability7.4Remote30583S.AbenMassaoud
D2016-10-04
 
Tesla (S&X) - (Interface Pair) Code Execution Vulnerability7.6Remote13668Benjamin K.M.
D2016-10-02
 
Volkswagen (GTE&E) - (Interface Pair) Code Execution7.6Remote12958Benjamin K.M.
D2016-10-01
 
Microsoft Office 365 Word - Code Execution Vulnerability9.1Remote15211Vulnerability-Lab
D2016-07-06
 
Teampass 2.1.26 - Authenticated File Upload Vulnerability7.2Remote31163Peter Kok
D2016-07-05
 
Teampass v2.1.26 - Privilege Escalate Vulnerability5.6Remote29028Peter Kok
D2016-05-18
 
Teampass v2.1.25 - Unauthenticated Access Vulnerability6.8Remote31793Peter Kok
D2016-05-17
 
Teampass v2.1.25 - Arbitrary File Download Vulnerability8.1Remote32766Peter Kok
D2016-03-07
 
Yahoo Bug Bounty #37 - Sender Spoofing Vulnerability 3Remote34788Lawrence Amer
D2016-02-10
 
Apache Sling Framework v2.3.6 - Information Disclosure6.4Remote49133Ateeq Khan
D2016-02-03
 
Compal ConnectBox - Wireless Passphrase Filter Bypass5.8Remote37736Marco Onorati
D2015-11-23
 
Vbulletin 5.x - Remote Code Execution Exploit (PL)8.3Remote41609Reza Espargham
Note: The remote vulnerabilities section impact only remote exploitable vulnerabilities in software products or services.

DDateRAdvisory NameVSTypeViewsAuthor
D2018-11-12
 
Intel OpenVINO 2018.1.x - Permissions Privilege Escalation5.3Local11478S.AbenMassaoud
D2018-10-25
 
Intel Quartus Family - Privilege Escalation Vulnerability7.8Local11907S.AbenMassaoud
D2018-10-15
 
EasyBoot v6.6.0.800 - (Function Key) Buffer Overflow6.7Local12548ZwX
D2018-10-12
 
EasyBoot v6.6.0.800 - (Title CD) Unicode Buffer Overflow6.5Local12516ZwX
D2018-10-05
 
Easy File Sharing WS v7.2 - (Domain Name) Buffer Overflow7.3Local12745ZwX
D2018-10-02
 
Easy File Sharing WS v7.2 - (UserId) Buffer Overflow6.4Local12796ZwX
D2018-08-27
 
R v3.4.4 Software - (SEH) Buffer Overflow Vulnerability6.5Local12859ZwX
D2018-07-30
 
Huawei Backup App v6.30.52.12.L - Session Vulnerability 5.9Local14267Vulnerability-Lab
D2018-07-23
 
SMPlayer 18.6.0 - Memory Corruption (DoS) Vulnerability4.4Local13301ZwX
D2018-07-18
 
Huawei SafeBox Manager 6.30.057.L - Bypass Vulnerability4.9Local26057Vulnerability-Lab
D2018-07-17
 
Binance v1.5.0 - Insecure File Permission Vulnerability2.5Local13590ZwX
D2018-07-13
 
Huawei eNSP v1 - Buffer Overflow (DoS) Vulnerability 3.3Local14033S.AbenMassaoud
Note: The local vulnerabilities section impact only the local exploitable vulnerabilities in software products or services.

DDateRAdvisory NameVSTypeViewsAuthor
D2018-07-10
 
Barracuda ADC 5.x - CS Cross Site Scripting Vulnerability4Remote16913Benjamin K.M.
D2018-07-09
 
Barracuda ADC 5.x - Filter Bypass & Persistent Vulnerability4.4Remote16683Benjamin K.M.
D2018-07-05
 
AT&T Bizcircle - Persistent Profile Cross Site Vulnerability4.6Remote15952Benjamin K.M.
D2018-06-27
 
ASUS WRT-AC66U 3.x - Cross Site Scripting Vulnerability3Local15700Lawrence Amer
D2018-06-26
 
PayPal Inc - Security Key Pin Approval & Expire Bypass4.3Remote16379Benjamin K.M.
D2018-06-22
 
PayPal (Notify) - Bypass & Persistent Web Vulnerability4.1Remote28561Benjamin K.M.
D2018-06-20
 
Magento Products T1 - Bypass & Persistent Vulnerability4.2Remote13767Vulnerability-Lab
D2018-06-18
 
Magento MarketPlace T1 - Bypass & Persistent Vulnerability4.2Remote13466Vulnerability-Lab
D2018-06-15
 
Shopify - (Applications) Privilege Escalation Vulnerability7.6Remote18724Vulnerability-Lab
D2018-06-14
 
Shopify - (Comments) Cross Site Scripting Vulnerability3.3Remote14833Vulnerability-Lab
D2018-06-13
 
Shopify - (Link Return) Client Side Web Vulnerability4Remote14019Vulnerability-Lab
D2018-02-06
 
Magento Commerce T2 - (attr) Persistent Web Vulnerability4.3Remote24544Vulnerability-Lab
Note: The vendor vulnerabilities section impact vulnerabilities in well-known or famous manufacturer products.

DDateRAdvisory NameVSTypeViewsAuthor
D2018-01-07
 
MS Sharepoint 2013 - Limited Access Permission Bypass4.8Local22123Marco Marsala
D2018-01-04
 
Adobe CreativeCloud (Webform) - Persistent Vulnerability3.7Remote23237Vulnerability-Lab
D2018-01-03
 
Salesforce Force (EventRSVP) - Multiple Web Vulnerabilities3Remote19237Vulnerability-Lab
D2017-09-06
 
Microsoft Info - Filter Bypass & Persistent Vulnerability3.8Remote21814Benjamin K.M.
D2017-09-05
 
Telekom Prepaid Shop - Multiple Persistent Vulnerabilities4.3Remote21578Benjamin K.M.
D2017-08-16
 
Microsoft Resnet - DNS Configuration Web Vulnerability6.4Remote22896S.AbenMassaoud
D2017-06-12
 
123ContactForm - Cross Site Scripting Web Vulnerability3.3Remote24179ZwX
D2017-05-23
 
Lufthansa AG - (Limbo) Open Redirect Web Vulnerability2.8Remote23588Benjamin K.M.
D2017-05-03
 
Stanford University (MBC) - SQL Injection Web Vulnerability 7.1Remote24802Ahsan Tahir
D2017-01-19
 
FullContact BB #2 - CSV Excel Macro Injection Vulnerability3.7Remote26521S.AbenMassaoud
D2016-12-14
 
Microsoft (MEPN EDU) - Client Side Cross Site Vulnerability3Remote25992MOHDAQEELAHMED
D2016-10-13
 
Facebook Ads Pixel - (sendcodebymail) CSRF Vulnerability3.1Remote12088Vulnerability-Lab
Note: The website vulnerabilities section impact vulnerabilities in website services and well-known service applications.

DDateRAdvisory NameVSTypeViewsAuthor
D2015-01-30
 
Glibc Ghost Vulnerability (CVE-2015-0235) - How to SecureRReport50843Rajivarnan R.
D2014-07-29
 
Wickr Announcement - Bug Bounty Program 2014RReport51384Wickr Security
D2014-05-12
 
Vulnerable Workers in Uncertain Times - 4th Conference CFPRReport54066ADAPT IT
D2014-04-09
 
HeartBleed SSL CVE 20140160 - 10 Steps to Fix in UbuntuRReport52636Vulnerability-Lab
D2014-03-26
 
ES746 Support-Bulletin - EMS Vulnerability ResolvedRBulletins50891Vulnerability-Lab
D2014-03-13
 
RFP - External Network Vulnerability Assessment & PenTestRReport51167Ismail Kaleem
D2014-01-31
 
HackInTheBox Quartal Magazine - eZine Issue 10RMagazin51109HITB TEAM
D2013-05-28
 
Filter Evasion and Bypass Methods - Pentest MagazineRReport56745Vulnerability-Lab
D2012-11-30
 
HackInTheBox Quartal Magazine - eZine Issue 09RMagazin51396HITB TEAM
D2012-11-26
 
Security in a serious way [THN] - eZine Issue 014RMagazin51085THN TEAM
D2012-06-16
 
Malware Magazine [THN] - eZine Issue 012RMagazin50934THN TEAM
D2012-05-29
 
Ultimate Directory Traversal Attack Cheat SheetRSheets50902Vulnerability-Lab
Note: The documents section impact security reports, security analysis, vulnerability analysis or research reportages.

DDateRAdvisory NameVSTypeViewsAuthor
D2018-11-07
 
Apple iOS v12.1 - Authentication Bypass Vulnerability6.3Local11684Vulnerability-Lab
D2018-10-26
 
Apple iOS 11.x & 12.x - Authentication Bypass Vulnerability6.3Local12002Vulnerability-Lab
D2018-10-25
 
Intel Quartus Family - Privilege Escalation Vulnerability7.8Local11098S.AbenMassaoud
D2018-10-02
 
Facebook - Instagram Business Access Token Vulnerability9.3Remote12856Vulnerability-Lab
D2018-10-02
 
Facebook - Instagram Business Access Token Demo PoC9.3Remote11777Vulnerability-Lab
D2018-09-19
 
Apple iOS 11.x - Webkit Filter Backdrop DoS Vulnerability4.1Remote12084Vulnerability-Lab
D2018-08-27
 
Anghami - Persistent Input Validation Vulnerability4.5Remote12301Vulnerability-Lab
D2018-08-21
 
GTA 5 Online Game - Timeout Sync Money Vulnerability4.7Remote12447Vulnerability-Lab
D2018-08-14
 
BMW ConnectedDrive - (Update) VIN Session Vulnerability6Remote12939Vulnerability-Lab
D2018-08-09
 
Facebook BB #71 - (API) UXSS via MS Internet Explorer 114.5Remote12962N/A - Anonymous
D2018-07-30
 
Huawei Backup App - Mobile Reset Session Vulnerability 5.9Local12888Vulnerability-Lab
D2018-07-23
 
Jira - Insufficient Session Validation Web Vulnerability6Remote13057Vulnerability-Lab
Note: The security video section demonstrates live hacks, proof of concepts, reproduce videos & exploitation videos.

[ News ] [ Submit ] [ Statistics ] [ Team ] [ Partner ] [ Talks & Workshop ] [ Awards ] [ Customer ] [ Contact ] [ Impressum ]


[Statistics] [June] Critical: 0 High: 0 Medium: 0 Low: 0 Best Researcher: [] Threat Service:


© EVOLUTION SECURITY GmbH ™