darksecurity.de

SSCHADV2011-014 - Multiple XSS vulnerabilities in Papoo Light Version

Network Security - Check Point IPS SoftwareBlade - HTTPS Inspection

SSCHADV2011-013 - Multiple XSS vulnerabilities in LightNEasy

SSCHADV2011-012 - Multiple vulnerabilities in Zimplit CMS

SSCHADV2011-010 - Multiple vulnerabilities on http://www.salue.de/

SSCHADV2011-009 - Multiple XSS vulnerabilities on http://www.netto-travel.de/

Posted by Stefan Schurtz on Monday, September 12. 2011

Advisory:	Multiple XSS vulnerabilities in Papoo Light Version
Advisory ID:	SSCHADV2011-014
Author:	Stefan Schurtz
Affected Software:	v4.0
Vendor URL:	http://www.papoo.de/
Vendor Status:	fixed
OSVDB-ID:	-

======================
Vulnerability Description:
======================

The Papoo Light Version is prone to multiple XSS vulnerabilities

Continue reading "SSCHADV2011-014 - Multiple XSS vulnerabilities in Papoo Light Version"

Posted by Stefan Schurtz on Saturday, September 10. 2011

With the R75.20 release, a Check Point Security Gateway is ready for HTTPS inspection (Supported blades: Data Loss Prevention (DLP), Anti Virus, Application Control, URL Filtering, and IPS).

I wrote a short howto about the configuration and here are the links to the PDF and to the Wiki

Further information can be found here:

https://www.checkpoint.com/campaigns/r75.20/index.html
https://www.checkpoint.com/products/softwareblades/intrusion-prevention-system.html
https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk65123

Enjoy yourself!

Posted by on Wednesday, September 7. 2011

Advisory:	Multiple XSS vulnerabilities in LightNEasy
Advisory ID:	SSCHADV2011-013
Author:	Stefan Schurtz
Affected Software:	3.2.4
Vendor URL:	http://www.lightneasy.org/
Vendor Status:	informed
OSVDB-ID:	75262

======================
Vulnerability Description:
======================

LightNEasy is prone to multiple XSS vulnerabilities

Continue reading "SSCHADV2011-013 - Multiple XSS vulnerabilities in LightNEasy"

Posted by on Monday, September 5. 2011

Advisory:	Multiple vulnerabilities in Zimplit CMS
Advisory ID:	SSCHADV2011-012
Author:	Stefan Schurtz
Affected Software:	v3.0
Vendor URL:	http://www.zimplit.com/
Vendor Status:	informed
CVE-ID:	-

======================
Vulnerability Description:
======================

The Zimplit CMS is prone to multiple vulnerabilities.

Continue reading "SSCHADV2011-012 - Multiple vulnerabilities in Zimplit CMS"

Posted by on Saturday, August 27. 2011

Advisory:	Multiple vulnerabilities on http://www.salue.de/
Advisory ID:	SSCHADV2011-010
Author:	Stefan Schurtz
Affected Software:	http://www.salue.de/
Vendor URL:	http://www.salue.de/
Vendor Status:	informed
CVE-ID:	-

======================
Vulnerability Description:
======================
The website "http://www.salue.de/" is prone to multiple XSS/SQL/FPD/LFI vulnerabilities

Continue reading "SSCHADV2011-010 - Multiple vulnerabilities on http://www.salue.de/"

August '22

Posted by on Friday, August 19. 2011

Advisory:	Multiple XSS vulnerabilities on http://www.netto-travel.de/
Advisory ID:	SSCHADV2011-009
Author:	Stefan Schurtz
Affected Software:	http://www.netto-travel.de/
Vendor URL:	http://www.netto-travel.de/
Vendor Status:	fixed
CVE-ID:	-

======================
Vulnerability Description:
======================

The website "www.netto-travel.de" is prone to multiple XSS vulnerabilities

Continue reading "SSCHADV2011-009 - Multiple XSS vulnerabilities on http://www.netto-travel.de/"