Technical Advisories

15th August 2016

HP StoreFabric B-Series Switch – Privilege Escalation

Daniel Compton of Info-Assure Ltd discovered a security vulnerability within the operating system of ...

Read the article
16th July 2015

Sophos Web Security Appliance – Two Vulnerabilities Discovered

Daniel Compton of Info-Assure Ltd discovered two security vulnerabilities within the Sophos Security Web Appliance. These security vulnerabilities allow authenticated users to read files from the operating system of the device and inject arbitrary JavaScript using the GUI management interface.

Read the article
14th July 2015

Splunk Enterprise – Stored Cross-Site Scripting Vulnerability

Daniel Compton of Info-Assure Ltd discovered a security vulnerability within the Splunk Enterprise product. This security vulnerability in Splunk Enterprise and Splunk Light allows remote authenticated users to inject arbitrary JavaScript.

Read the article
27th February 2015

X-Cart Store – Stored Cross-Site Scripting Vulnerability

Daniel Compton of Info-Assure Ltd discovered a high risk security vulnerability within the X-Cart 5.x shopping cart for WordPress.

Read the article
14th January 2015

Themify Maps Pro – Stored Cross-Site Script Vulnerability

Daniel Compton of Info-Assure Ltd discovered a high risk security vulnerability within the Maps Pro WordPress Plugin. As part of Info-Assures responsible disclosure program, we will not release any information until the vendor has patched the vulnerability.

Read the article