Tuesday, January 3, 2017
Posted by Editorial_Staff_Team
Reader's rate:
4
Telekom Cloud - MyworkPlace Business Frontend & Backend Vulnerabilities Researchers of the vulnerability laboratory core team discovered multiple persistent cross site scripting web vulnerabilities to the telekom cert team in mid december 2016. The security vulnerabilities was located in... + continue reading
Friday, December 23, 2016
Posted by Editorial_Staff_Team
Reader's rate:
3.545455
How Super Mario Run helped a Security Research to identify a Vulnerability In september we got the first information about the new notify function within the new iOS 10.x version. The new notify function was mainly a secret to all the users until november 2016. Apple did not revealed  how... + continue reading
Tuesday, November 15, 2016
Posted by Editorial_Staff_Team
Reader's rate:
4.5
New Cloud Services, High Severity Issues & Invitation Only In the last 6 years the public bug bounty program of barracuda networks helped to improve the security of their active product series. At the beginning the program was running independently but about 1 and  a half year ago the... + continue reading
Monday, November 14, 2016
Posted by Editorial_Staff_Team
Reader's rate:
5
US Military starts official "Hack the Army" Bug Bounty Program Due to the last days "Eric Fanning" secretary of the us army announced, that the new "Hack the Army" Bug Bounty Program will start soon. In 2016 the "Hack the Pentagon" Program was disclosing... + continue reading
Thursday, November 10, 2016
Posted by Editorial_Staff_Team
Reader's rate:
3
Adobe Connect v9.5.6 - (CVE-2016-7851) Persistent Cross Site Vulnerability About some month ago the pentester and security researcher Benjamin Kunz Mejri was pentesting for the adobe security department the actual upcoming "Connect" web services and web-application. Due to his active... + continue reading
Thursday, October 27, 2016
Posted by Editorial_Staff_Team
Reader's rate:
5
Wickr Inc Secret Messenger - Bug Bounty Program Vulnerabilities by Design Today we would like to talk about the security of the american secret messenger called "Wickr - Secret Messenger". The company of the product is located in the united states and encrypts messaging context with... + continue reading
Friday, October 14, 2016
Posted by Editorial_Staff_Team
Reader's rate:
4.333335
Mobidea - New Platforms & Mobile Applications in Scope Today we would like to present the security community a fresh and new partner "Mobidea" of our advanced network. Mobidea is a mobile programmatic affiliate network for media buyers and webmasters. The team of the... + continue reading
Monday, October 10, 2016
Posted by Editorial_Staff_Team
Reader's rate:
5
Facebook API v2.1 hit by RFC6749 Open Redirect Attack Vulnerability The vulnerability laboratory core team researcher "SaifAllah benMassaoud" discovered a zero-day RFC6749 Open Redirector Attack in Facebook API v2.1. The RFC6749 Open Redirector Attack vulnerability allows remote... + continue reading
Wednesday, October 5, 2016
Posted by Editorial_Staff_Team
Reader's rate:
5
Vulnerability Lab hosts new Exclusive Bug Bounty & Responsible Disclosure Security Programs We prepared the startup (2016-10-05) of the new exclusive commercial bug bounty and non-commercial responsible disclosure programs.  Bug Bounty or Responsible Disclosure The new exclusive... + continue reading

Featured Cooperative Security Articles

Tuesday, 03/01/17 - 0 comment(s)
Telekom Cloud - MyworkPlace Business Frontend & Backend Vulnerabilities Researchers of the vulnerability laboratory core team discovered multiple persistent cross site scripting web vulnerabilities to the telekom cert team in mid december 2016. The security vulnerabilities was located in the new telekom cloud business service and... + continue reading
Friday, 23/12/16 - 2 comment(s)
How Super Mario Run helped a Security Research to identify a Vulnerability In september we got the first information about the new notify function within the new iOS 10.x version. The new notify function was mainly a secret to all the users until november 2016. Apple did not revealed  how the functionality will inform the end user about... + continue reading

BUG BOUNTY ISSUES

VULNERABILITIES & BUGS

BEST SECURITY VIDEOS

Tuesday, 25/08/15 - 0 comment(s)
PayPal Inc patched medium severity Cross Site Request Forgery Issue The independent and individual vulnerability laboratory researcher paresh parmar discovered during the participate in the... + continue reading

IT-SECURITY EVENTS

Tuesday, 05/07/16 - 0 comment(s)
Manchester City - Football Club hosts first Hackathon in July 2016 The city of football club ManchesterCity had organized a new event #HackMCFC, which will provide participants with access to... + continue reading
Mon
25
Apr
Editorial_Staff_Team's picture

MIT Security - Alpha Phase of Bug Bounty Program in April 2016

MIT Security - Alpha Phase of Bug Bounty Program in April 2016

In april 2016 the well known MIT EDU started a new official bug bounty program. The MIT Bug Bounty program is an experimental program aiming to improve MIT's online security and foster a community for students to research and test the limits of cyber security in a responsible fashion.

In- Scope Domains

In-Scope Vulnerabilities

Wed
20
Apr
Editorial_Staff_Team's picture

Bug Bounty Program Award Winners 2015 - Exclusive Interview by United Airlines & Facebook

Announcement of the Bug Bounty Program Award Winners 2015 - Exclusive Interviews with United Airlines & Facebook

We worked hard to represent the winners of 2015 after the nicely solved first award ceremonie in 2014. This year we exclusivly release the winners of the international "Bug Bounty Awards". The award is nominated twice for the "Best Upcoming Bug Bounty Program" and the "Best Bug Bounty Program" of the year.

The winners of the award are nominated via email vote by 100 vulnerability laboratory researchers and 101 independent or individual security researchers. The voting results will be multiplied to finally discover the winners. Be welcome to visit the new awards module in the vulnerability laboratory infrastructure with archive.

Mon
18
Apr
Editorial_Staff_Team's picture

Cyberoam Central Console v02.03.1 - Persistent Web Vulnerabilities

Cyberoam Central Console v02.03.1 - Persistent Web Vulnerabilities

Today we disclosed a new issue in the cyberoam central console appliance web-application. This issue is application-side and was discovered to the cyberoam developer team about 2 month ago. The issue was reported by "Lawrence Amer" a core team researcher of the vulnerability laboratory.

Pages

Subscribe to VULNERABILITY MAGAZINE - Bug Bounties, Acknoweldgements & Security Research RSS