>> ARCHIVE: 2015-09

Virtual Freer versions prior to 1.57 suffers from an authentication bypass vulnerability.

Milw0rm Clone Script version 1.0 suffers from a cross site scripting vulnerability.

OpenDocMan version 1.3.2. suffers from a cross site scripting vulnerability.

Checkmarx CxQL versions 7.1.5 and below suffer from a sandbox bypass vulnerability.

Zhone ADSL2+ 4P Bridge bridge and router suffers from authentication bypass and information disclosure vulnerabilities.

This Metasploit module will bypass Windows UAC by utilizing the missing .manifest on the script host cscript/wscript.exe binaries.

This Metasploit module will install a payload that is executed during boot. It will be executed either at user logon or system startup via the registry value in “CurrentVersionRun” (depending…

An independent vulnerability laboratory researcher discovered an authentication bypass vulnerability in the official Virtual Freer v1.57 web-application.

The Vulnerability Laboratory Core Research Team discovered an application-side input validation web vulnerability in the official Shopify online service web-application.