Microsoft starts Xbox & Xbox Live Bug Bounty Program

Tuesday, February 11, 2020
Posted by Editorial_Staff_Team
Bug Bounty
2 comment(s)
Reader's rate:
5
Microsoft starts Xbox... + continue reading

Apple launches public Bug Bounty Program and delights Security Community

Friday, December 20, 2019
Posted by Editorial_Staff_Team
Bug Bounty
3 comment(s)
Reader's rate:
5
Apples Whitehat Hacker gift for Xmas Due to a longer period of time (January) we have stopped our Responsible Disclosure Bug Bounty Program at Apple. The reason was that Apple's security department made many mistakes in dealing with independent security researchers and did not seriously reward... + continue reading

Zero Day Vulnerability in Deutsche Bahn Ticket Machine Series System uncovered

Friday, December 13, 2019
Posted by Editorial_Staff_Team
Published Vulnerabilities
3 comment(s)
Reader's rate:
5
Whitehat in action discovers Kiosk Escape... + continue reading

Skype v8.49.0.49 Export History v7 - Persistent Web Vulnerability

Friday, November 22, 2019
Posted by Editorial_Staff_Team
Published Vulnerabilities
3 comment(s)
Reader's rate:
5
Last month, security researcher and founder of the vulnerability lab Benjamin Kunz Mejri discovered a new Microsoft Skype vulnerability. The problem has a local and a remote attack vector that can be exploited. Surprisingly, the way the attack takes place is via the client infrastructure to an... + continue reading

Imperial & Dabman Internet Radio - Undocumented Telnetd & Code Execution

Monday, September 9, 2019
Posted by Editorial_Staff_Team
Published Vulnerabilities
6 comment(s)
Reader's rate:
5
Undocumented Telnetd... + continue reading

GPSRP pays researchers for reporting abusiv google playstore apps

Monday, September 2, 2019
Posted by Editorial_Staff_Team
Bug Bounty
1 comment(s)
Reader's rate:
5
GPSRP pays researchers for reporting abusiv google playstore apps Adam Bacchus, Sebastian Porst, and Patrick Mutchler  of the  Android Security... + continue reading

Apple extends exisiting private bug bounty program at the end of the year

Friday, August 9, 2019
Posted by Editorial_Staff_Team
Top Stories
2 comment(s)
Reader's rate:
5
Apple Updates Bug Bounty Program Q4 In recent years, Apple and the company around cupertino have received massive criticism about the current Bug Bounty program. Among other things, well-known security researchers from the scene have criticized Apple for a faulty program, which attracts others but... + continue reading

Telekom Magenta Musik 360 - Multiple Cross Site Scripting Vulnerabilities

Thursday, March 7, 2019
Posted by Editorial_Staff_Team
Videos
1 comment(s)
Reader's rate:
5
Telekom Magenta Musik 360 - CERT Coordinates The videos shows the reproduce for the german telekom in a new service they did publish in 2019 Q1. The vulnerabilities are persistent and non-persistent cross site scripting issues within the front / backend of the online service. Remote attackers... + continue reading

Swiss Governemnt Starts E-Voting PIT Bug Bounty Program in February

Thursday, February 14, 2019
Posted by Editorial_Staff_Team
Top Stories
1 comment(s)
Reader's rate:
5
Internation Bug Bounty Program to PenTest E-Voting System The federal government of switzerland offers hackers who can uncover vulnerabilities, privacy issues or simple bugs in its e-voting system up to 44,000 euros. International White Hat or ethics hackers are given the opportunity to... + continue reading

Featured Cooperative Security Articles

Microsoft starts Xbox & Xbox Live Bug Bounty Program

Tuesday, 11/02/20 - 2 comment(s)
Microsoft starts Xbox... + continue reading

Apple launches public Bug Bounty Program and delights Security Community

Friday, 20/12/19 - 3 comment(s)
Apples Whitehat Hacker gift for Xmas Due to a longer period of time (January) we have stopped our Responsible Disclosure Bug Bounty Program at Apple. The reason was that Apple's security department made many mistakes in dealing with independent security researchers and did not seriously reward them. In October, we had a meeting in Abu Dhabi (HITB... + continue reading

Jump back to navigation

TOP SECURITY STORIES

Apple extends exisiting private bug bounty program at the end of the year

Friday, 09/08/19 - 2 comment(s)
Apple Updates Bug Bounty Program Q4 In recent years, Apple and the company around cupertino have received massive criticism about the current Bug Bounty program. Among other things, well-known... + continue reading

Swiss Governemnt Starts E-Voting PIT Bug Bounty Program in February

14/02/19 - 1 comment(s)

New Banana PI R1 SD V3 Case for Devs & PenTesters Available

24/07/18 - 0 comment(s)

Mozilla's New ASan Nightly Build Project Bug Bounty Program 2018

23/07/18 - 0 comment(s)

+ View all
Jump back to navigation

BEST SECURITY VIDEOS

Telekom Magenta Musik 360 - Multiple Cross Site Scripting Vulnerabilities

Thursday, 07/03/19 - 1 comment(s)
Telekom Magenta Musik 360 - CERT Coordinates The videos shows the reproduce for the german telekom in a new service they did publish in 2019 Q1. The vulnerabilities are persistent and non-... + continue reading

PayPal Inc patched medium severity Cross Site Request Forgery Issue

25/08/15 - 0 comment(s)

Shopify | Buy Button | Persistent Embed POST Inject Vulnerability

13/08/15 - 8 comment(s)
UBNT Bug Bounty #3 - Persistent Filename Vulnerability

UBNT Bug Bounty #3 - Persistent Filename Vulnerability

11/08/15 - 0 comment(s)

+ View all
Jump back to navigation

LAB MAGAZINE ISSUES

Welcome to "Vulnerability Magazine"

Tuesday, 11/03/14 - 1 comment(s)
Vulnerability Magazine Welcome to the Vulnerability Magazine! The the vulnerability magazine, publishes the latest vulnerabilities and security informations from our laboratory infrastructure.... + continue reading

+ View all
Jump back to navigation

IT-SECURITY EVENTS

Edward Snowden free speech at JBFone - Data Security & Privacy

Thursday, 23/11/17 - 2 comment(s)
Legendary free speech - You are the Key! In the last weeks we got invited to the very famous JBFone Conference organized by the Fiducia & GAD IT AG. The Fiducia & GAD IT AG is a public... + continue reading

Internet Security Conference 2017 by Qihoo 360

22/09/17 - 0 comment(s)

Manchester City - Football Club hosts first Hackathon in July 2016

05/07/16 - 0 comment(s)

Hack in the Box | Amsterdam 2015 | HITB

30/05/15 - 3 comment(s)

+ View all
Jump back to navigation

Tue
29
Jul

Bulletin BNSEC 1263 - Multiple Cross Site Vulnerabilities coordinated disclosed through Barracuda Networks

Submitted by Editorial_Staff_Team on Tue, 07/29/2014 - 15:16

BULLETIN BNSEC 1263 patched by Barracuda Networks Dev Team

The security researchers Ebrahim Hegazy & Benjamin Kunz Mejri discovered during the official bug bounty program of barracuda several issues in the product series. The last patched issue of the 7 released bulletins impact a client-side vulnerability in the firewall and loadbalancer. Ebrahim Hegazy discovered the same bug in the loadbalancer appliance. During the exploitation phase Benjamin Mejri verified the issue in the firewall appliances about 2 weeks ago.

Fri
25
Jul

2 Filter Evasion Security Videos released - Barracuda Networks Bug Bounty Program

Submitted by Editorial_Staff_Team on Fri, 07/25/2014 - 13:00

2 Filter Evasion Security Videos released - Barracuda Networks Bug Bounty Program

In the last 7 days we released 5 new barracuda networks security vulnerabilities in the laboratory infrastructure. The issue has been coordinated disclosed by the vulnerability laboratory in cooperation with the manufacturer barracuda networks. Two of the issues has been recorded during the exploitation phase. Feel free to watch the two security demonstration videos.

Barracuda Networks Firewall Appliance Application - POST to CS GET Exception Handling Vulnerability

Advisory: http://www.vulnerability-lab.com/get_content.php?id=1102

Pages

Subscribe to Vulnerability Magazine - Acknoweldgements, Bug Bounties & Security Research RSS

Syndicate

Subscribe to Syndicate