Multiple vulnerabilities identified in "i-doit" CMDB web application
January 5, 2013;
i-doit versions prior to 1.0 Pro and 0.9.9-7 Open are affected. Version 1.0.2 Pro has received a new configure option to 'sanitize user input' which defaults to off and has to be manually enabled. However, bear in mind all installations not having this flag set remain vulnerable.
Compass am CFO-Forum
Compass Security Schweiz AG bezieht neue Büroräumlichkeiten in Bern
Vulnerability in JavaMail
Compass geht in die Offensive auf der CeBIT
Vulnerability in i-doit