Affiliation/Organization: CODSEC


Time to Patch Stats

For vulnerabilities disclosed through this affiliation where we have sufficient data to calculate the time to patch (12 vulns), the following statistics apply:

Min Time To Patch:2 days
Avg Time To Patch:8 days
Max Time To Patch:40 days

Other Affiliations

Creditees Affiliated with CODSEC have also affiliated with:

Website: http://www.codseq.it/

Creditees currently or formerly associated with CODSEC (1):
(ordered by association date)

Known SinceNameVulns Through Affiliation
2012-01-16Filippo Cavallarin19

Disclosed Vulnerabilities (19):

Discl. DateOSVDB IDCVE IDCrediteesTitle
2012-05-23 82137 Filippo Cavallarin
 LogAnalyzer index.php filter Parameter XSS
2012-05-23 82144 Filippo Cavallarin
 LogAnalyzer admin/searches.php id Parameter XSS
2012-05-23 82145 Filippo Cavallarin
 LogAnalyzer admin/views.php Columns[] Parameter SQL Injection
2012-05-23 82143 Filippo Cavallarin
 LogAnalyzer admin/reports.php id Parameter XSS
2012-05-23 82582 Filippo Cavallarin
 LogAnalyzer Diskfile Source Creation syslog file Parameter Configuration File Information Disclosure
2012-03-05 79984 2012-1617 Filippo Cavallarin
 OSClass oc-content/themes/modern/combine.php Cache File Creation Traversal Arbitrary File Overwrite
2012-01-30 82685 Filippo Cavallarin
 OSClass /oc-admin/index.php file Parameter Remote File Inclusion
2012-01-30 82732 Filippo Cavallarin
High-Tech Bridge SA
 OSClass /oc-admin/index.php id Parameter XSS
2012-01-30 82686 Filippo Cavallarin
 OSClass /oc-admin/index.php id Parameter SQL Injection
2012-01-24 78663 2012-0829 Filippo Cavallarin
 Mibew Messenger Multiple Function CSRF
2012-01-24 78712 2012-0829 Filippo Cavallarin
 Mibew Messenger /operator/ban.php Multiple Parameter XSS
2012-01-24 78713 2012-0829 Filippo Cavallarin
 Mibew Messenger /operator/settings.php Multiple Parameter XSS
2012-01-16 78503 2012-0974
2012-5163		 High-Tech Bridge SA
Filippo Cavallarin
 OSClass index.php getParam() Function Multiple Parameter XSS
2012-01-16 78562 2012-0812 Filippo Cavallarin
 Postfix Admin create-alias.php Unspecified XSS
2012-01-16 78563 2012-0812 Filippo Cavallarin
 Postfix Admin edit-alias.php Unspecified XSS
2012-01-16 78564 2012-0812 Filippo Cavallarin
 Postfix Admin Unspecified XSS
2012-01-16 78566 2012-0811 Filippo Cavallarin
 Postfix Admin functions.inc.php pacrypt() Function Unspecified SQL Injection
2012-01-16 78567 2012-0811 Filippo Cavallarin
 Postfix Admin backup.php Unspecified SQL Injection
2012-01-16 78565 2012-0811 Filippo Cavallarin
 Postfix Admin create-domain.php Unspecified SQL Injection

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

© Copyright 2002 - 2013 Open Source Vulnerability Database (OSVDB), All Rights Reserved.
Privacy Statement - Terms of Use