2023

• Security Feature Bypass In Zitadel — Race Condition

  13th November 2023

  Zitadel was found to be vulnerable to a race condition, leading to the application processing numerous successful brute-force login attempts before triggering an account lockout.

  View advisory: Security Feature Bypass In Zitadel

• Zitadel one click silent account takeover — Multiple issues

  7th November 2023

  The avatar upload functionality was found to be vulnerable to stored cross-site scripting via SVG's.

  View advisory: Zitadel one click silent account takeover

• Security Feature Bypass In ASP.NET and Visual Studio — Race Condition

  12th July 2023

  The SignInManager in ASP.NET was found to be vulnerable to a Race Condition leading to thousands of successful brute-force login attempts before triggering an account lockout.

  View advisory: Security Feature Bypass In ASP.NET and Visual Studio

• Kramer VIA GO² — Multiple issues

  31st May 2023

  The Kramer VIA GO² is a "Compact & Secure 4K Wireless Presentation Device", which was found to have multiple high risk security issues.

  View advisory: Kramer VIA GO²

• perfSONAR — Multiple issues

  31st January 2023

  Multiple vulnerabilities were found in perfSONAR that could allow a malicious individual to scan the internal network and read arbitrary files on the server.

  View advisory: perfSONAR

2022

• Spectrum Spatial Analyst 20.1 — Multiple issues

  16th November 2022

  Precisely Spectrum Spatial Analyst 2020.1.0 S44 was found to be vulnerable to Server-Side Request Forgery (SSRF) and a Path Traversal sequence vulnerability.

  View advisory: Spectrum Spatial Analyst 20.1

• Genero Enterprise — Multiple issues

  8th August 2022

  A number of vulnerabilities were discovered in the suite of applications bundled as Genero Enterprise including RCE in the Genero Mobile for Android framework, and a lack of certificate validation across the suite.

  View advisory: Genero Enterprise

• Wiris MathType — Path traversal vulnerability

  6th July 2022

  The Wiris MathType library (v7.28.0 and lower) was discovered to contain a path traversal vulnerability in the resourceFile parameter. This vulnerability is exploited via a crafted request to the resource handler.

  View advisory: Wiris MathType

2021

• Accellion kiteworks — Privilege escalation vulnerability

  1st November 2021

  A malicious user could gain shell access to the Accellion kiteworks application, complete with root privileges.

  View advisory: Accellion kiteworks

• Ruby Dragonfly — Argument Injection vulnerability

  27th May 2021

  An argument injection vulnerability in the Dragonfly gem before 1.4.0 for Ruby allows remote attackers to read and write to arbitrary files via a crafted URL when the verify_url option is disabled.

  View advisory: Ruby Dragonfly

• Silverstripe — Cross Site Scripting (XSS) vulnerability

  19th March 2021

  A Cross Site Scripting vulnerability in Silverstripe allows an attacker to inject an arbitrary payload in the CreateQueuedJobTask dev task via a specially crafted URL.

  View advisory: Silverstripe

2020

• VMWare vCloud API — Access Control vulnerability

  21st April 2020

  Access control vulnerabilities were identified within the VMware vCloud Director API (prior to v9.5.0.5). An organisation administrator can create, remove or revert snapshot operations against vApps and VMS located in other organisation VDCs.

  View advisory: VMWare vCloud API

• Cisco CWS — SQL Injection vulnerability

  21st April 2020

  A vulnerability in the web UI of Cisco Cloud Web Security (CWS) could allow an authenticated, remote attacker to execute arbitrary SQL queries.

  View advisory: Cisco CWS

• TelStrat Engage — Multiple issues

  30th March 2020

  Multiple vulnerabilities where identified within the TelStrat Engage (v5.6.1) application, including unauthenticated access to cleartext passwords.

  View advisory: TelStrat Engage

• RSA Archer — Multiple issues

  30th March 2020

  RSA Archer contains multiple security vulnerabilities that could potentially be exploited by malicious users to compromise the affected system.

  View advisory: RSA Archer

2019

• SolarWinds SERV-U — CSRF vulnerability

  17th December 2019

  A CSRF vulnerability was identified in SolarWinds' file upload functionality.

  View advisory: SolarWinds SERV-U

• Squiz Matrix CMS — Multiple issues

  9th December 2019

  Multiple vulnerabilities were found in the Squiz Matrix CMS that could result in arbitrary file deletion, information disclosure, and remote code execution.

  View advisory: Squiz Matrix CMS

• ASP.NET Boilerplate — Input Validation vulnerability

  6th March 2019

  An input validation issue was discovered in the ASP.NET Boilerplate that could lead to significant client-side security vulnerabilities.

  View advisory: ASP.NET Boilerplate

• Teracue ENC-400 — Multiple issues

  20th February 2019

  Multiple vulnerabilities were identified within Teracue ENC-400, including broken authentication and command injection.

  View advisory: Teracue ENC-400

2018

• WatchGuard Access Points — Multiple issues

  1st May 2018

  Several major vulnerabilities have been identified within WatchGuard Access Point devices that can be chained together to gain pre-authenticated remote code execution.

  View advisory: WatchGuard Access Points