Onur Yilmaz | 19 Dec 13:50 2014

TWiki Security Advisory - XSS Vulnerability - CVE-2014-9367

Information
--------------------
Advisory by Netsparker.
Name: XSS Vulnerability with Scope and Other URL Parameters of WebSearch
Affected Software : TWiki
Affected Versions: 6.0.1 and possibly below
Vendor Homepage : http://www.twiki.org/
Vulnerability Type : Cross-site Scripting
Severity : Important
CVE ID: CVE-2014-9367
Netsparker Advisory Reference : NS-14-042

Advisory URL
------------
https://www.netsparker.com/cve-2014-9367-xss-vulnerability-in-twiki/

Impact
------

A malicious person can use specially crafted URL parameters to TWiki's
WebSearch topic that execute arbitrary JavaScript code in the browser.
Examples:

Specially crafted parameter to the view script of TWiki:

GET /do/view/TWiki/WebSearch?search=Search&scope='"--></style></script><script>alert('CVE-2014-9367
vulnarable!')</script>

TWiki decodes the URL parameters and pops up a JavaScript alert box
showing "CVE-2014-9367 vulnarable!"
(Continue reading)

Onur Yilmaz | 19 Dec 13:49 2014

TWiki Security Advisory - XSS Vulnerability - CVE-2014-9325

Information
--------------------
Advisory by Netsparker.
Name: XSS Vulnerability with QUERYSTRING and QUERYPARAMSTRING in TWiki
Affected Software : TWiki
Affected Versions: 6.0.1 and possibly below
Vendor Homepage : http://www.twiki.org/
Vulnerability Type : Cross-site Scripting
Severity : Important
CVE ID: CVE-2014-9325
Netsparker Advisory Reference : NS-14-041

Advisory URL
------------
https://www.netsparker.com/cve-2014-9325-xss-vulnerability-in-twiki/

Impact
--------------------

A malicious person can use specially crafted URL parameters to TWiki
scripts that execute arbitrary JavaScript code in the browser.
Examples:

Specially crafted parameter to the view script of TWiki:

GET /do/view/Main/TWikiPreferences?'"--></style></script><script>alert('CVE-2014-9325
vulnerable')</script>

TWiki decodes the URL parameters and pops up a JavaScript alert box
showing "CVE-2014-9325 vulnerable!"
(Continue reading)

Vulnerability Lab | 19 Dec 13:42 2014

Facebook BB #18 - IDOR Issue & Privacy Vulnerability

Document Title:
===============
Facebook BB #18 - IDOR Issue & Privacy Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1371

Facebook Security ID: 219208937

Release Date:
=============
2014-12-12

Vulnerability Laboratory ID (VL-ID):
====================================
1371

Common Vulnerability Scoring System:
====================================
4.7

Product & Service Introduction:
===============================
Facebook is an online social networking service, whose name stems from the colloquial name for the book
given to students 
at the start of the academic year by some university administrations in the United States to help students
get to know 
each other. It was founded in February 2004 by Mark Zuckerberg with his college roommates and fellow
Harvard University 
(Continue reading)

Vulnerability Lab | 19 Dec 13:32 2014

Mobilis MobiConnect 3G ZDServer v1.0.1.2 - Privilege Escalation Vulnerability

Document Title:
===============
Mobilis MobiConnect 3G ZDServer v1.0.1.2 - Privilege Escalation Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1385

Release Date:
=============
2014-12-19

Vulnerability Laboratory ID (VL-ID):
====================================
1385

Common Vulnerability Scoring System:
====================================
6.4

Product & Service Introduction:
===============================
http://www.3G.dz
http://wwwen.zte.com.cn/en

Abstract Advisory Information:
==============================
An independent vulnerability laboratory researcher discovered a local privilege escalation
vulnerability in the official ZTE Mobilis 3g MobiConnect 3G++ ZDServer v1.0.1.2 software.

(Continue reading)

Vulnerability Lab | 19 Dec 13:28 2014

iBackup v10.0.0.45 - Privilege Escalation Vulnerability

Document Title:
===============
iBackup v10.0.0.45 - Privilege Escalation Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1382

Release Date:
=============
2014-12-18

Vulnerability Laboratory ID (VL-ID):
====================================
1382

Common Vulnerability Scoring System:
====================================
6.2

Product & Service Introduction:
===============================
With IBackup, you can backup/restore interactively or schedule regular online backups for Windows
desktops, laptops and servers. 
It has a simple, user- friendly interface coupled with powerful scheduling and logging features. IBackup
automatically selects 
critical data (Desktop, Music, Pictures, Videos, Documents, Windows Mail, Favourites) for backup.
Advanced features include Open 
file Backup, System State backup, MS SQL Server, MS Exchange Server, Hyper-V, MS SharePoint Server and
Oracle Server backups.
(Continue reading)

Apple Product Security | 18 Dec 23:25 2014
Picon

APPLE-SA-2014-12-18-1 Xcode 6.2 beta 3


APPLE-SA-2014-12-18-1 Xcode 6.2 beta 3

Xcode 6.2 beta 3 is now available and addresses the following:

Git
Available for:  OS X Mavericks v10.9.4 or later
Impact:  Synching with a malicious git repository may allow
unexpected files to be added to the .git folder
Description:  The checks involved in disallowed paths did not account
for case insensitivity or unicode characters. This issue was
addressed by adding additional checks.
CVE-ID
CVE-2014-9390 : Matt Mackall of Mercurial and Augie Fackler of
Mercurial

Xcode 6.2 beta 3 may be obtained from:
https://developer.apple.com/xcode/downloads/

To check that the Xcode has been updated:

* Select Xcode in the menu bar
* Select About Xcode
* The version after applying this update will be "6.2 (6C101)".

Information will also be posted to the Apple Security Updates
web site: https://support.apple.com/kb/HT1222

This message is signed with Apple's Product Security PGP key,
and details are available at:
(Continue reading)

Vulnerability Lab | 18 Dec 13:43 2014

iTwitter v0.04 WP Plugin - XSS & CSRF Web Vulnerability

Document Title:
===============
iTwitter v0.04 WP Plugin - XSS & CSRF Web Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1375

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-9336

CVE-ID:
=======
CVE-2014-9336

Release Date:
=============
2014-12-15

Vulnerability Laboratory ID (VL-ID):
====================================
1375

Common Vulnerability Scoring System:
====================================
2.5

Product & Service Introduction:
===============================
https://wordpress.org/plugins/itwitter/

(Continue reading)

Vulnerability Lab | 18 Dec 13:46 2014

E-Journal CMS (ID) - Multiple Web Vulnerabilities

Document Title:
===============
E-Journal CMS (ID) - Multiple Web Vulnerabilities 

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1380

Release Date:
=============
2014-12-17

Vulnerability Laboratory ID (VL-ID):
====================================
1380

Common Vulnerability Scoring System:
====================================
7

Product & Service Introduction:
===============================
http://simlitabmas.dikti.go.id/ejournal/ 

Abstract Advisory Information:
==============================
An independent Vulnerability Laboratory Researcher discovered multiple vulnerabilities in the
indonesian E-Journal web-application.

Vulnerability Disclosure Timeline:
(Continue reading)

Vulnerability Lab | 18 Dec 13:48 2014

Facebook Bug Bounty #16 (Studio) - Persistent Vulnerability

Document Title:
===============
Facebook Bug Bounty #16 (Studio) - Persistent Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1368

Facebook Security ID: 219162244

Release Date:
=============
2014-12-10

Vulnerability Laboratory ID (VL-ID):
====================================
1368

Common Vulnerability Scoring System:
====================================
3.5

Product & Service Introduction:
===============================
Facebook is an online social networking service, whose name stems from the colloquial name for the book
given to students 
at the start of the academic year by some university administrations in the United States to help students
get to know 
each other. It was founded in February 2004 by Mark Zuckerberg with his college roommates and fellow
Harvard University 
(Continue reading)

Vulnerability Lab | 18 Dec 13:51 2014

Apple iOS v8.x - Message Context & Privacy Vulnerability

Document Title:
===============
Apple iOS v8.x - Message Context & Privacy Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1346

Video: http://www.vulnerability-lab.com/get_content.php?id=1350

Release Date:
=============
2014-12-16

Vulnerability Laboratory ID (VL-ID):
====================================
1346

Common Vulnerability Scoring System:
====================================
4.2

Product & Service Introduction:
===============================
iOS (previously iPhone OS) is a mobile operating system developed and distributed by Apple Inc.
Originally released in 2007 for 
the iPhone and iPod Touch, it has been extended to support other Apple devices such as the iPad and Apple TV.
Unlike Microsoft`s 
Windows Phone (Windows CE) and Google`s Android, Apple does not license iOS for installation on non-Apple
hardware. As of 
(Continue reading)

Vulnerability Lab | 17 Dec 19:20 2014

Jease CMS v2.11 - Persistent UI Web Vulnerability

Document Title:
===============
Jease CMS v2.11 - Persistent UI Web Vulnerability

References (Source):
====================
http://www.vulnerability-lab.com/get_content.php?id=1373

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-8780

CVE-ID:
=======
CVE-2014-8780

Release Date:
=============
2014-12-12

Vulnerability Laboratory ID (VL-ID):
====================================
1373

Common Vulnerability Scoring System:
====================================
3.7

Product & Service Introduction:
===============================
Jease is an Open Source Content-Management-System which is driven by the power of Java. Jease means `Java
with Ease`, 
(Continue reading)


Gmane