Posted by Egidio Romano on Jul 09
----------------------------------------------------------------------------------Posted by KoreLogic Disclosures via Fulldisclosure on Jul 09
KL-001-2025-011: Schneider Electric EcoStruxure IT Data Center Expert Unauthenticated Server-Side Request ForgeryPosted by KoreLogic Disclosures via Fulldisclosure on Jul 09
KL-001-2025-010: Schneider Electric EcoStruxure IT Data Center Expert Privilege EscalationPosted by KoreLogic Disclosures via Fulldisclosure on Jul 09
KL-001-2025-009: Schneider Electric EcoStruxure IT Data Center Expert Remote Command ExecutionPosted by KoreLogic Disclosures via Fulldisclosure on Jul 09
KL-001-2025-008: Schneider Electric EcoStruxure IT Data Center Expert Root Password DiscoveryPosted by KoreLogic Disclosures via Fulldisclosure on Jul 09
KL-001-2025-007: Schneider Electric EcoStruxure IT Data Center Expert Unauthenticated Remote Code ExecutionPosted by KoreLogic Disclosures via Fulldisclosure on Jul 09
KL-001-2025-006: Schneider Electric EcoStruxure IT Data Center Expert XML External Entities InjectionPosted by Security Explorations on Jul 09
Dear All,Posted by Andrey Stoykov on Jul 07
# Exploit Title: Directory Traversal "Site Title" - bluditv3.16.2Posted by Andrey Stoykov on Jul 07
# Exploit Title: XSS via SVG File Upload - bluditv3.16.2Posted by Andrey Stoykov on Jul 07
# Exploit Title: Stored XSS "Add New Content" Functionality - bluditv3.16.2Posted by Andrey Stoykov on Jul 07
# Exploit Title: Session Fixation - bluditv3.16.2Posted by josephgoyd via Fulldisclosure on Jun 30
Title: iOS Activation Flaw Enables Pre-User Device CompromisePosted by Brian Carpenter via Fulldisclosure on Jun 25
Hey list,Posted by Seralys Research Team via Fulldisclosure on Jun 23
Seralys Security Advisory | https://www.seralys.com/researchPosted by Seralys Research Team via Fulldisclosure on Jun 23
Seralys Security Advisory | https://www.seralys.com/researchPosted by Seralys Research Team via Fulldisclosure on Jun 23
Seralys Security Advisory | https://www.seralys.com/researchPosted by Seralys Research Team via Fulldisclosure on Jun 23
Seralys Security Advisory | https://www.seralys.com/researchPosted by malvuln on Jun 23
First official NG versioned release with significant updates, fixesPosted by Jeroen Hermans via Fulldisclosure on Jun 23
Dear all,Posted by josephgoyd via Fulldisclosure on Jun 17
"Glass Cage" β Sophisticated Zero-Click iMessage Exploit ChainEnabling Persistent iOS Compromise and Device BrickingPosted by SEC Consult Vulnerability Lab via Fulldisclosure on Jun 17
SEC Consult Vulnerability Lab Security Advisory < 20250612-0 >Posted by SEC Consult Vulnerability Lab via Fulldisclosure on Jun 17
SEC Consult Vulnerability Lab Security Advisory < 20250611-0 >Posted by 0610648533 on Jun 17
========================================================================Posted by SEC Consult Vulnerability Lab via Fulldisclosure on Jun 09
SEC Consult Vulnerability Lab Security Advisory < 20250604-0 >Posted by josephgoyd via Fulldisclosure on Jun 09
Hello Full Disclosure,Posted by Stefan Kanthak on Jun 03
Hi @ll,Posted by Sanjay Singh on Jun 03
Hello Full Disclosure list,Posted by Ron E on Jun 03
An authenticated attacker can inject JavaScript into the bio field of theirPosted by Ron E on Jun 03
An authenticated user can inject malicious JavaScript into the user_imagePosted by Qualys Security Advisory via Fulldisclosure on Jun 03
Qualys Security AdvisoryPosted by Andrey Stoykov on Jun 03
# Exploit Title: Stored XSS via File Upload - adaptcmsv3.0.3Posted by Andrey Stoykov on Jun 03
# Exploit Title: IDOR "Change Password" Functionality - adaptcmsv3.0.3Posted by Andrey Stoykov on Jun 03
# Exploit Title: Stored XSS "Send Message" Functionality - adaptcmsv3.0.3Posted by Andrey Stoykov on Jun 03
# Exploit Title: Authenticated File Upload to RCE - adaptcmsv3.0.3Posted by Andrey Stoykov on Jun 03
# Exploit Title: Stored XSS in "Description" Functionality - cubecartv6.5.9Posted by MichaΕ Majchrowicz via Fulldisclosure on Jun 03
Security AdvisoryPosted by Juho ForsΓ©n via Fulldisclosure on Jun 03
The PSF requests library (https://github.com/psf/requests & https://pypi.org/project/requests/) leaks .netrcPosted by Housma mardini on Jun 03
Hi,Posted by Jacek Lipkowski via Fulldisclosure on Jun 03
Hi,Posted by SEC Consult Vulnerability Lab via Fulldisclosure on May 27
SEC Consult Vulnerability Lab Security Advisory < 20250521-0 >Posted by Ron E on May 27
ο»ΏPosted by Shaikh Shahnawaz on May 16
[+] Credits: Shahnawaz Shaikh, Security Researcher at Cybergate Defense LLCPosted by Sebastian AuwΓ€rter via Fulldisclosure on May 16
Advisory ID: SYSS-2025-006Posted by SEC Consult Vulnerability Lab via Fulldisclosure on May 16
SEC Consult Vulnerability Lab Security Advisory < 20250507-0 >Posted by SEC Consult Vulnerability Lab via Fulldisclosure on May 16
SEC Consult Vulnerability Lab Security Advisory < publishing date 20250429-0 >Posted by SEC Consult Vulnerability Lab via Fulldisclosure on May 16
SEC Consult Vulnerability Lab Security Advisory < 20250422-0 >Posted by Ron E on May 16
A session management vulnerability exists in gugoan's EconomizzerPosted by Ron E on May 16
A persistent cross-site scripting (XSS) vulnerability exists in gugoan'sPosted by Ron E on May 16
A persistent cross-site scripting (XSS) vulnerability exists in gugoan'sPosted by Apple Product Security via Fulldisclosure on May 16
APPLE-SA-05-12-2025-9 Safari 18.5Posted by Apple Product Security via Fulldisclosure on May 16
APPLE-SA-05-12-2025-8 visionOS 2.5Posted by Apple Product Security via Fulldisclosure on May 16
APPLE-SA-05-12-2025-7 tvOS 18.5Posted by Apple Product Security via Fulldisclosure on May 16
APPLE-SA-05-12-2025-6 watchOS 11.5Posted by Apple Product Security via Fulldisclosure on May 16
APPLE-SA-05-12-2025-5 macOS Ventura 13.7.6Posted by Apple Product Security via Fulldisclosure on May 16
APPLE-SA-05-12-2025-4 macOS Sonoma 14.7.6Posted by Apple Product Security via Fulldisclosure on May 16
APPLE-SA-05-12-2025-3 macOS Sequoia 15.5Posted by Apple Product Security via Fulldisclosure on May 16
APPLE-SA-05-12-2025-2 iPadOS 17.7.7Posted by Apple Product Security via Fulldisclosure on May 16
APPLE-SA-05-12-2025-1 iOS 18.5 and iPadOS 18.5Posted by Egidio Romano on May 16
---------------------------------------------------------------------------