Mail Index

• Thread Index

• [FD] Linux Kernel Block Subsystem Vulnerabilities
  • From: Agent Spooky's Fun Parade via Fulldisclosure
• [FD] Security Vulnerability in Koller Secret: Real Hidden App (com.koller.secret.hidemyphoto)
  • From: duykham
• [FD] SigInt-Hombre v1 / dynamic Suricata detection rules from real-time threat feeds
  • From: malvuln
• [FD] zlib v1.3.1.2 Global Buffer Overflow in TGZfname() of zlib untgz Utility via Unbounded strcpy() on User-Supplied Archive Name
  • From: Ron E
• [FD] MongoDB v8.3.0 Heap Buffer Underflow in OpenLDAP LMDB mdb_load
  • From: Ron E
• [FD] Bioformats v8.3.0 Improper Restriction of XML External Entity Reference in Bio-Formats Leica Microsystems XML Parser
  • From: Ron E
• [FD] Bioformats v8.3.0 Untrusted Deserialization of Bio-Formats Memoizer Cache Files
  • From: Ron E
• [FD] MongoDB v8.3.0 Integer Underflow in LMDB mdb_load
  • From: Ron E
• [FD] Panda3d v1.10.16 deploy-stub Unbounded Stack Allocation Leading to Uninitialized Memory
  • From: Ron E
• [FD] Panda3d v1.10.16 egg-mkfont Stack Buffer Overflow
  • From: Ron E
• [FD] Panda3d v1.10.16 Uncontrolled Format String in Panda3D egg-mkfont Allows Stack Memory Disclosure
  • From: Ron E
• [FD] Multiple Security Misconfigurations and Customer Enumeration Exposure in Convercent Whistleblowing Platform (EQS Group)
  • From: Yuffie Kisaragi via Fulldisclosure
• [FD] KL-001-2026-01: yintibao Fun Print Mobile Unauthorized Access via Context Hijacking
  • From: KoreLogic Disclosures via Fulldisclosure
• [FD] TinyOS 2.1.2 printfUART Global Buffer Overflow via Unbounded Format Expansion
  • From: Ron E
• [FD] TinyOS 2.1.2 Stack-Based Buffer Overflow in mcp2200gpio
  • From: Ron E
• [FD] RIOT OS 2026.01-devel-317 Stack-Based Buffer Overflow in tapslip6 Utility via Unbounded Device Path Construction
  • From: Ron E
• [FD] RIOT OS 2026.01-devel-317 Stack-Based Buffer Overflow in RIOT ethos Serial Frame Parser
  • From: Ron E
• Re: [FD] Multiple Security Misconfigurations and Customer Enumeration Exposure in Convercent Whistleblowing Platform (EQS Group)
  • From: Art Manion via Fulldisclosure
• [FD] Defense in depth -- the Microsoft way (part 95): the (shared) "Start Menu" is dispensable
  • From: Stefan Kanthak via Fulldisclosure
• [FD] [REVIVE-SA-2026-001] Revive Adserver Vulnerabilities
  • From: Matteo Beccati
• [FD] OpenMetadata <= 1.11.3 Authenticated SQL Injection
  • From: BUG
• Re: [FD] Multiple Security Misconfigurations and Customer Enumeration Exposure in Convercent Whistleblowing Platform (EQS Group)
  • From: Wade Sparks
• [FD] SEC Consult SA-20260126-0 :: Multiple Critical Vulnerabilities in dormakaba Kaba exos 9300
  • From: SEC Consult Vulnerability Lab via Fulldisclosure
• [FD] SEC Consult SA-20260126-1 :: Multiple Critical Vulnerabilities in dormakaba Access Manager
  • From: SEC Consult Vulnerability Lab via Fulldisclosure
• [FD] SEC Consult SA-20260126-2 :: UART Leaking Sensitive Data in dormakaba registration unit 9002 (PIN pad)
  • From: SEC Consult Vulnerability Lab via Fulldisclosure
• Re: [FD] Multiple Security Misconfigurations and Customer Enumeration Exposure in Convercent Whistleblowing Platform (EQS Group)
  • From: Marco Ermini via Fulldisclosure
• Re: [FD] Multiple Security Misconfigurations and Customer Enumeration Exposure in Convercent Whistleblowing Platform (EQS Group)
  • From: Yuffie Kisaragi via Fulldisclosure
• [FD] CVE-2025-12758: Unicode Variation Selectors Bypass in 'validator' library (isLength)
  • From: Karol Wrótniak
• [FD] Paper-Exploiting XAMPP Installations
  • From: Andrey Stoykov
• [FD] Weak Password Complexity - elggv6.3.3
  • From: Andrey Stoykov
• [FD] Username Enumeration - elggv6.3.3
  • From: Andrey Stoykov