[MAGAZINE][GALLERY][BUG BOUNTY LIST][HACKTIVITY] | |
Account:[RegistrationRole:[Anonymous] Researcher: 1848 Advisories: 1138 Documents: 42 Videos: 242 Date: 03.07.2025 TZ: 07:17

[ Home ] [ Mobile ] [ Vendor ] [ Web-Application ] [ Remote ] [ Local ] [ Websites ] [ Documents ] [ Videos ] [ Search ] [ FAQ ]

DDateRAdvisory NameVSTypeViewsAuthor
D2021-11-01
 
My Movie Collection Sinatra App - (Login) XSS Vulnerabilities5.1Remote28028Vulnerability-Lab
D2021-11-01
 
My Movie Collection Sinatra App - (Movie) XSS Vulnerability5.6Remote27810Vulnerability-Lab
D2021-10-27
 
PHPJabbers Simple CMS v5 - Persistent XSS Vulnerability5.4Remote27253Vulnerability-Lab
D2021-10-27
 
Hotel Listing (WP Plugin) v3.x - MyAccount XSS Vulnerability5.3Remote27744Vulnerability-Lab
D2021-10-25
 
Vanguard v2.1 - (Search) POST Inject Web Vulnerability4Remote26391Vulnerability-Lab
D2021-10-25
 
Ultimate POS v4.4 - (Products) Persistent XSS Vulnerability5.6Remote27155Vulnerability-Lab
D2021-10-21
 
Isshue Shopping Cart v3.5 - Cross Site Web Vulnerability5.1Remote26943Vulnerability-Lab
D2021-10-21
 
Mult-e-Cart Ultimate v2.4 - SQL Injection Vulnerability7Remote26998Vulnerability-Lab
D2021-10-20
 
PHP Melody v3.0 - (Editor) Persistent XSS Vulnerability5.4Remote21927Vulnerability-Lab
D2021-10-20
 
PHP Melody v3.0 - (submitted) Persistent XSS Vulnerability5.6Remote21900Vulnerability-Lab
D2021-10-19
 
PHP Melody v3.0 - (vid) SQL Injection Vulnerability7Remote22421Vulnerability-Lab
D2021-10-19
 
PHP Melody v3.0 - Multiple Cross Site Web Vulnerabilities5Remote22168Vulnerability-Lab
Note: The web-application vulnerabilities section impact only web vulnerabilities in web-applications products or services.

DDateRAdvisory NameVSTypeViewsAuthor
D2020-04-14
 
SuperBackup v2.0.5 iOS - VCF Persistent XSS Vulnerability4.6Remote18202Vulnerability-Lab
D2020-04-13
 
File Transfer iFamily 2.1 - Directory Traversal Vulnerability7.1Remote23350Vulnerability-Lab
D2018-01-16
 
Photo Vault 1.2 iOS - Insecure Authentication Vulnerability4.8Local43225Benjamin K.M.
D2018-01-04
 
Photos in Wifi 1.0.1 iOS - Path Traversal Web Vulnerability6.5Remote46495Benjamin K.M.
D2018-01-03
 
Wincor Nixdorf PC/E Mobile Cash TryOut - API Vulnerability3.1Remote34288Vulnerability-Lab
D2017-02-23
 
Super File Explorer 1.0.1 - File Upload Web Vulnerability7Remote47829Benjamin K.M.
D2017-02-22
 
Air Transfer 1.2.1 & 1.0.14 - Multiple XSS Vulnerabilities4Remote48122Vulnerability-Lab
D2017-02-21
 
Lock Photos Album&Videos Safe v4.3 - Directory Traversal7.8Remote44426Vulnerability-Lab
D2017-02-20
 
Album Lock v4.0 iOS - Directory Traversal Vulnerability7.2Remote47674Vulnerability-Lab
D2017-01-10
 
Cobi Tools v1.0.8 iOS - Persistent Web Vulnerability4Local49215Vulnerability-Lab
D2016-07-31
 
Zoll ePCR v2.6.4 iOS - Multiple Persistent Vulnerabilities4.4Local46047Vulnerability-Lab
D2016-07-26
 
Zoll Checklist 1.2.2 iOS - Multiple Persistent Vulnerabilities4Remote47012Vulnerability-Lab
Note: The mobile vulnerabilities section impact vulnerabilities in operating systems, applications, software & hardware.

DDateRAdvisory NameVSTypeViewsAuthor
D2016-02-10
 
Apache Sling Framework v2.3.6 - Information Disclosure6.4Remote64862Ateeq Khan
D2016-02-03
 
Compal ConnectBox - Wireless Passphrase Filter Bypass5.8Remote53278Marco Onorati
D2015-11-23
 
Vbulletin 5.x - Remote Code Execution Exploit (PL)8.3Remote56990Reza Espargham
D2015-10-05
 
W150D Wireless N 150 ADSL2 Modem Router Vulnerability2.4Remote56639Lawrence Amer
D2015-09-03
 
Zhone ADSL2+ 4P Bridge&Router - Multiple Vulnerabilities8.8Remote57625Mahmoud Khaled
D2015-08-15
 
PDF Shaper v3.5 - (MSF) Buffer Overflow Vulnerability7.9Remote57122metacom
D2015-08-14
 
MS HTA (HTML Application) - Code Execution (MS14-064)9.3Remote58217Reza Espargham
D2015-06-16
 
ZTE ZXV10 W300 v3.1.0c_DR0 - UI Session Vulnerability6Remote87543Vuln Core Labs
D2015-05-29
 
Apple iOS 8.0.3 - Silent VCF & iMessage DoS Vulnerability4Remote65182Benjamin K.M.
D2015-02-27
 
Swiss File Knife v1.7.4 HTTP - Buffer Overflow Vulnerability8.4Remote58508lucyoa
D2015-02-26
 
DSS TFTP 1.0 Server - Path Traversal Vulnerability6.2Remote57798lucyoa
D2014-12-05
 
NASA Orion - Bypass, Persistent Issue & Embed Code Exec6Remote77315Benjamin K.M.
Note: The remote vulnerabilities section impact only remote exploitable vulnerabilities in software products or services.

DDateRAdvisory NameVSTypeViewsAuthor
D2018-07-17
 
Huawei SafeBox Manager 6.30.057.L - Bypass Vulnerability4.9Local41206Vulnerability-Lab
D2018-07-16
 
Binance v1.5.0 - Insecure File Permission Vulnerability2.5Local28324ZwX
D2018-07-12
 
Huawei eNSP v1 - Buffer Overflow (DoS) Vulnerability 3.3Local28779S.AbenMassaoud
D2018-07-11
 
Lenovo SU v5.07 - Buffer Overflow & Code Execution7.8Local28850S.AbenMassaoud
D2018-07-10
 
Intel System CU - Buffer Overflow (DoS) Vulnerability5.5Local28458S.AbenMassaoud
D2018-07-08
 
Secutech DSL WR RIS 330 - Filter Bypass Vulnerability3.3Local28611Lawrence Amer
D2018-01-16
 
Oracle AgileExpress v9.0 - Privilege Escalation Vulnerability4.2Local33635S.AbenMassaoud
D2018-01-04
 
Kentico CMS v11.0 - Stack Buffer Overflow Vulnerability6Local36094Benjamin K.M.
D2017-11-28
 
DVD Creator 4.1.0 - Insecure File Permissions Vulnerability3.5Local33817S.AbenMassaoud
D2017-11-01
 
Perfect Privacy VPN Manager v1.10.11 - DoS Vulnerability3.8Local38804Vulnerability-Lab
D2017-09-17
 
Microsoft Windows - MSC XXE Data Exfiltrate Vulnerability 4.3Remote42431S.AbenMassaoud
D2017-09-03
 
Play TV v1.25.1(Build r123776) - DLL Hijack Vulnerability 3.3Local35796Lawrence Amer
Note: The local vulnerabilities section impact only the local exploitable vulnerabilities in software products or services.

DDateRAdvisory NameVSTypeViewsAuthor
D2018-06-13
 
Shopify - (Comments) Cross Site Scripting Vulnerability3.3Remote30785Vulnerability-Lab
D2018-06-12
 
Shopify - (Link Return) Client Side Web Vulnerability4Remote30080Vulnerability-Lab
D2018-02-06
 
Magento Commerce T2 - (attr) Persistent Web Vulnerability4.3Remote40422Vulnerability-Lab
D2018-01-12
 
SonicWall GMS v8.1 - Filter Bypass & Persistent Vulnerability4.1Remote49256Vulnerability-Lab
D2018-01-08
 
Magento Connect T1 - (Claim) Persistent Vulnerability4Remote37889Vulnerability-Lab
D2018-01-06
 
SonicWall SonicOS NSA - Multiple Web Vulnerabilities4.5Remote44454Benjamin K.M.
D2018-01-04
 
SonicWall SonicOS NSA - Bypass & Persistent Vulnerability4.5Remote48436Benjamin K.M.
D2018-01-03
 
Magento Commerce - SSRF & XSPA Web Vulnerability4.7Remote32842Vulnerability-Lab
D2017-10-30
 
PayPal Inc #168 - Insufficient Authentication Vulnerability4.2Remote36425Chamli
D2017-10-24
 
Huawei HG255s - Server Directory Traversal Vulnerability6Remote37097Ismail Tasdelen
D2017-09-03
 
Wibu Systems CodeMeter v6.50 - (UI) XSS Web Vulnerability2.8Remote43558Benjamin K.M.
D2017-08-30
 
Adobe Connect v9.6.1 - CSRF Token Web Vulnerability 2.8Remote35818Lawrence Amer
Note: The vendor vulnerabilities section impact vulnerabilities in well-known or famous manufacturer products.

DDateRAdvisory NameVSTypeViewsAuthor
D2017-01-19
 
FullContact BB #2 - CSV Excel Macro Injection Vulnerability3.7Remote41128S.AbenMassaoud
D2016-12-14
 
Microsoft (MEPN EDU) - Client Side Cross Site Vulnerability3Remote40648MOHDAQEELAHMED
D2016-10-12
 
Facebook Ads Pixel - (sendcodebymail) CSRF Vulnerability3.1Remote26658Vulnerability-Lab
D2016-10-01
 
Facebook (Law Enforcement) - Filter Bypass Vulnerability3.9Remote26708Vulnerability-Lab
D2016-09-30
 
Facebook (Law Enforcement) - Persistent Vulnerability3.8Remote26708Vulnerability-Lab
D2016-08-29
 
Kaspersky Company Account - FileManager Vulnerability3.5Remote42479Lawrence Amer
D2016-08-28
 
Kaspersky Company Account - Response XSS Vulnerability3.5Remote42357Lawrence Amer
D2016-07-06
 
BMW ConnectedDrive - (Update) VIN Session Vulnerability6Remote70103Benjamin K.M.
D2016-07-05
 
BMW - (Token) Client Side Cross Site Scripting Vulnerability3.6Remote62022Benjamin K.M.
D2016-05-24
 
AVAST (Shop) #18 - Multiple Client Side XSS Vulnerabilities3.3Remote53806Karim Rahal
D2016-05-23
 
AVAST (Business) #17 - Persistent Web Vulnerability3.7Remote53406Karim Rahal
D2016-05-22
 
AVAST Business #14 - Client Side Cross Site Vulnerability3.3Remote53613Kieran Claessens
Note: The website vulnerabilities section impact vulnerabilities in website services and well-known service applications.

DDateRAdvisory NameVSTypeViewsAuthor
D2012-04-23
 
CyberWarfare & Cyberwar [THN] - eZine Issue 010RMagazin65852THN TEAM
D2012-04-21
 
Ultimate Cross Site Scripting Attack Cheat SheetRSheets66127Vulnerability-Lab
D2012-04-14
 
HITB Quartal Magazine - eZine Issue 08RMagazin63380HITB TEAM
D2012-03-07
 
Android Security - Boot Camp Workshop & Presentation #2RSlides63868PV Labs
D2012-03-06
 
Censorship & Global Concerns [THN] - eZine Issue 009RMagazin63359THN TEAM
D2012-02-26
 
Android Security - Boot Camp Workshop & Presentation #1RSlides63135PV Labs
D2012-01-19
 
Enter at your own Risk [THN] - eZine Issue 008RMagazin62586THN TEAM
D2012-01-13
 
HTC HD2 TCOM Win 6.5 modify to HTC HD2 Win7 10 StepsRTutorial62723N/A - Anonymous
D2011-11-10
 
Attacking 3G and 4G Mobile Tele-Communications NetworksRReport61435D.Mende
D2011-10-17
 
Skype Software Vulnerabilities - 0 Day Exploitation 2011RReport63820Vulnerability-Lab
D2011-10-17
 
Skype 0 Day Exploitation Presentation - HITB Malaysia 2011RSlides61008Vulnerability-Lab
D2011-10-16
 
HITB Quartal Magazine - eZine Issue 007RMagazin61440HITB TEAM
Note: The documents section impact security reports, security analysis, vulnerability analysis or research reportages.

DDateRAdvisory NameVSTypeViewsAuthor
D2018-07-22
 
Jira - Insufficient Session Validation Web Vulnerability6Remote27261Vulnerability-Lab
D2018-07-18
 
HomeAdvisor Pro - (EntityHash) Auth Bypass Vulnerability9.4Remote26962Vulnerability-Lab
D2018-07-17
 
Shopify - Persistent XML Cross Site Scripting Vulnerability 4.1Remote27154Vulnerability-Lab
D2018-07-16
 
BMW - (Token) Cross Site Scripting Web Vulnerability3.6Remote26995Vulnerability-Lab
D2018-07-11
 
Magento - Proof of Concept SSRF & XSPA Vulnerability4Remote27434Vulnerability-Lab
D2018-07-09
 
PayPal (Notify) - Filter Bypass & Persistent Vulnerability3.8Remote27397Vulnerability-Lab
D2018-07-08
 
Carto DB - Persistent Cross Site Scripting Vulnerability3.8Remote27021Vulnerability-Lab
D2018-07-05
 
Ebay Inc - CSRF Exploitation PoC of User Data Delete3Remote27205Lawrence Amer
D2018-06-25
 
Magento - Filter Bypass & Persistent Web Vulnerabilities5.1Remote27566Vulnerability-Lab
D2018-06-17
 
ReleaseWire - (Groups) Persistent Cross Site Vulnerability4.8Remote27000Vulnerability-Lab
D2018-06-14
 
ReleaseWire - (Profile) Persistent Cross Site Scripting4.4Remote27145Vulnerability-Lab
D2018-06-13
 
ReleaseWire - (Foldername) Persistent Cross Site Scripting4.3Remote26984Vulnerability-Lab
Note: The security video section demonstrates live hacks, proof of concepts, reproduce videos & exploitation videos.

[ News ] [ Submit ] [ Statistics ] [ Team ] [ Partner ] [ Talks & Workshop ] [ Awards ] [ Customer ] [ Contact ] [ Impressum ]


[Statistics] [July] Critical: 0 High: 0 Medium: 0 Low: 0 Best Researcher: [Vulnerability-Lab] Threat Service:


© Evolution Security GmbH ™