Compass Security News

Here you will find reports, interviews and news. We give you an insight into our work and report on 0day (zero-day) vulnerabilities discovered by our staff on customer projects or in their research time.

 

Stephan Sekula has identified a reflected cross-site scripting vulnerability in Abacus.

Read more

Stephan Sekula has identified a vulnerability in the VMware AirWatch iOS applications

Read more

Stephan Sekula has identified a reflected cross-site scripting vulnerability in IBM Notes Traveler.

Read more

Fabio Poloni has identified a Path Traversal vulnerability in the Monstra content management system.

Read more

Thierry Viaccoz has identified an authorization bypass in the ownCloud Impersonate application

Read more

Sylvain Heiniger has identified a Cross-Site Scripting vulnerability in the ownCloud iOS application.

Read more

Lukasz D. identified an XSS vulnerability in Atmosphere Framework.

Read more

Stephan Sekula identified vulnerabilities in the OfficeSpace facility management software.

Read more

Thierry Viaccoz identified an incorrectly designed access control in Homeputer CL Studio for HomeMatic.

Read more

Lukasz D. identified an HTTP header injection vulnerability in Vert.x Framework.

Read more

Nicolas Heiniger identified vulnerabilities in totemomail Encryption Gateway.

Read more

Stephan Sekula has identified a design vulnerability in Microsoft Intune that may allow getting access to confidential information.

Read more