Next Last 1. 2015-08-30 [1] [FD] Winmail Server 4.2 Reflected XSS (Cross-site Scripting) Web Applica full-disclos Jing Wang 2. 2015-08-30 [1] [FD] KnowledgeTree OSS 3.0.3b Reflected XSS (Cross-site Scripting) Web A full-disclos Jing Wang 3. 2015-08-28 [1] [FD] Photo Transfer (2) v1.0 iOS - Denial of Service Vulnerability full-disclos Vulnerability Lab 4. 2015-08-28 [1] [FD] PayPal Bug Bounty #119 - Stored Cross Site Scripting Vulnerability full-disclos Vulnerability Lab 5. 2015-08-28 [1] [FD] LinuxOptic CMS 2009 - Auth Bypass Session Vulnerability full-disclos Vulnerability Lab 6. 2015-08-28 [1] [FD] Dogma India dogmaindia CMS - Auth Bypass Session Vulnerability full-disclos Vulnerability Lab 7. 2015-08-28 [2] [FD] AnchorCMS - PHP Object Injection (CVE-2015-5687) and More full-disclos Scott Arciszewski 8. 2015-08-26 [1] [FD] Publicly exploitable XSS in WordPress plugin Navis Documentcloud (W full-disclos dxw Security 9. 2015-08-26 [1] [FD] CSRF/XSS vulnerability in Private Only could allow an attacker to d full-disclos dxw Security 10. 2015-08-26 [1] [FD] nullcon se7en CFP is open full-disclos nullcon 11. 2015-08-24 [1] [FD] Google Analyticator Security Advisory - Multiple XSS Vulnerabilitie full-disclos Onur Yilmaz 12. 2015-08-22 [1] [FD] Blind boolean SQL injection vulnerability in ResourceSpace CMS full-disclos William Reyor 13. 2015-08-20 [1] [FD] UBNT Bug Bounty #3 - Persistent Filename Vulnerability full-disclos Vulnerability Lab 14. 2015-08-20 [1] [FD] UBNT Bug Bounty #1 - Client Side Cross Site Scripting Vulnerability full-disclos Vulnerability Lab 15. 2015-08-20 [1] [FD] WebSolutions India Design CMS - SQL Injection Vulnerability full-disclos Vulnerability Lab 16. 2015-08-20 [1] [FD] ChiefPDF Software v2.x - Buffer Overflow Vulnerability full-disclos Vulnerability Lab 17. 2015-08-20 [1] [FD] PDF Shaper v3.5 - (MSF) Remote Buffer Overflow Vulnerability full-disclos Vulnerability Lab 18. 2015-08-20 [1] [FD] Microsoft HTA (HTML Application) - Remote Code Execution Vulnerabil full-disclos Vulnerability Lab 19. 2015-08-19 [2] [FD] ModX Revolution 2.3.5 - Reflected XSS full-disclos CRT 20. 2015-08-19 [1] Re: [FD] CORE-2009-01515 - WordPress Privileges Unchecked in admin.php a full-disclos paul.szabo 21. 2015-08-18 [1] [FD] UNIT4TETA TETA WEB - Session Fixation full-disclos Lukasz Miedzinski 22. 2015-08-18 [1] [FD] UNIT4TETA TETA WEB - Authorization Bypass vulnerability full-disclos Lukasz Miedzinski 23. 2015-08-18 [1] [FD] Bolt 2.2.4 - Code Execution full-disclos CRT 24. 2015-08-18 [1] [FD] Phorum 5.2.19 - Reflected XSS and Open Redirect full-disclos CRT 25. 2015-08-17 [1] [FD] Weak authentication in EMC Secure Remote Services Virtual Edition W full-disclos Securify B.V. 26. 2015-08-17 [1] [FD] Insufficient certificate validation in EMC Secure Remote Services V full-disclos Securify B.V. 27. 2015-08-17 [1] [FD] =?utf-8?q?=5BERPSCAN-15-013=5D_SAP_NetWeaver_AS_Java_CIM_UPL?= =?ut full-disclos ERPScan inc 28. 2015-08-17 [3] [FD] The OAuth2 Complete plugin for WordPress uses a pseudorandom number full-disclos dxw Security 29. 2015-08-17 [1] [FD] Severe weakness in checkout provider Borderfree allows users to eas full-disclos John Smith 30. 2015-08-17 [1] [FD] Oracle CSO numbers, security hygiene and fixes at the same time full-disclos Security Explorations Next Last