• Home
  • About
    • About
    • Articles
    • Interviews
    • Other activities
    • Awards
  • Keynotes
  • Books
  • Giving back
    • Sponsorships
    • Virtual travel
    • Zero-day advisories
  • Contact

Zero-day advisories

On this page, you can find more information about zero-days found and responsibly disclosed by Dr. Erlijn van Genuchten. A zero-day is a security hole in a computer system or application that is to that date unknown to its owners/developers/others who are able to fix it. Submitting these advisories to companies helps them to improve the security of their software.

Security bug in Coda

> Bug bounty confirmation

Improper Restriction of XML External Entity Reference (XXE) in agorum core Pro

> Full publication

Cross-Site Request Forgery in agorum core Pro

> Full publication

Cross-Site Scripting in agorum core Pro

> Full publication

Insecure Direct Object Reference in agorum core Pro

> Full publication

Persistent Cross-Site Scripting in agorum core Pro

> Full publication

Insecure Direct Object Reference in Thru Managed File Transfer Portal

> Full publication

Improperly Implemented Security Check for Standard in Thru Managed File Transfer Portal

> Full publication

Insecure Direct Object Reference in Thru Managed File Transfer Portal

> Full publication

Insecure Direct Object Reference in Thru Managed File Transfer Portal

> Full publication

Cross-Site Scripting in Thru Managed File Transfer Portal

> Full publication

SQL-Injection in Thru Managed File Transfer Portal

> Full publication

URL Redirection to Untrusted Site in Novell Filr

> Full publication

Information Exposure Through Directory Listing in ownCloud

> Full publication

> Bug bounty report

Missing Access Control in Page2Flip

> Full publication

Broken Authentication and Session Management in Page2Flip

> Full publication

Improper Handling of Insufficient Privileges in Page2Flip

> Full publication

Insecure Direct Object Reference in Page2Flip

> Full publication

Cross-Site Scripting in Page2Flip

> Full publication

Cross-Site Scripting in Page2Flip

> Full publication

Denial-of-Service in Page2Flip

> Full publication

Home Privacy Terms and Conditions Imprint

Copyright © 2025 Sustainable Decisions All rights reserved.

{:lang_general_banner_cookie_disclaimer}
{:lang_general_banner_cookie_cookie} {:lang_general_banner_kartra_cookie}
{:lang_general_banner_cookie_privacy}
{:lang_general_powered_by} KARTRA