20 matches found
WordPress RegistrationMagic Plugin <= 6.0.2.6 is vulnerable to Privilege Escalation
Software RegistrationMagic Type Plugin Vulnerable versions = 6.0.2.6 Fixed in 6.0.2.7 OWASP Top 10 A3: Injection Classification Privilege Escalation CVE CVE-2024-10508 Patch priority High CVSS severity High 9.8 Developer Claim ownership PSID fa83ac6f8527 Credits shaman0x01 Required privilege...
WordPress Otter - Gutenberg Block Plugin <= 3.0.6 is vulnerable to Path Traversal
Software Otter - Gutenberg Block Type Plugin Vulnerable versions = 3.0.6 Fixed in 3.0.7 OWASP Top 10 A4: Insecure Design Classification Path Traversal CVE CVE-2024-11219 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 16f94f193561 Credits mikemyers Required privilege...
casasierradelsol.com Improper Access Control vulnerability OBB-3795226
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
casalindachaouen.com Improper Access Control vulnerability OBB-3795208
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
www2.gwlb.de Cross Site Scripting vulnerability OBB-3794916
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
calzadosluque.com Improper Access Control vulnerability OBB-3794903
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
broadwaycollection.com Improper Access Control vulnerability OBB-3794679
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
cruise-vacations.ca Cross Site Scripting vulnerability OBB-3794190
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
spa-design.it XSS vulnerability
Open Bug Bounty ID: OBB-703298 Description| Value ---|--- Affected Website:| spa-design.it Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| hidden...
madreshoy.com XSS vulnerability
Open Bug Bounty ID: OBB-703149 Description| Value ---|--- Affected Website:| madreshoy.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| hidden...
admin.agilecrm.com XSS vulnerability
Open Bug Bounty ID: OBB-436188 Description| Value ---|--- Affected Website:| admin.agilecrm.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Chea...
healthglows.net XSS vulnerability
Vulnerable URL: http://healthglows.net/books.php?id=14%27%22%3E%3Cscript%3Ealert%28%27OPENBUGBOUNTY%27%29%3C/script%3E Details: Description| Value ---|--- Patched:| Yes, at 26.11.2017 Latest check for patch:| 26.11.2017 15:15 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed...
werkenineenhotel.nl XSS vulnerability
Vulnerable URL: https://www.werkenineenhotel.nl/hotelvacaturesbanenbijbanenstage/?companygroupid=ratingid==availabilityid==a%27aa%22%3E%3Cimg%20src=x%20onerror=prompt/OPENBUGBOUNTY/%3E==Zoeken Details: Description| Value ---|--- Patched:| Yes, at 26.11.2017 Latest check for patch:| 26.11.2017 15:...
nameplayground.com XSS vulnerability
Vulnerable URL: http://www.nameplayground.com/'%7D%7D;%22%3E%7D;%7D;%7D--%3E%3C/SCRIPT%3E-%3C/style%3E-%3C/title%3E-%3C/BoDy%3E-%3Cmarquee%3E-%3Ch1%3EOmniGooch/%3Csvg/onload=alert'XSSPOSED';%3E;%7B%7B' Details: Description| Value ---|--- Patched:| Yes, at 26.11.2017 Latest check for patch:|...
mijn.bibliotheek.be XSS vulnerability
Vulnerable URL: https://mijn.bibliotheek.be/openbibid/rest/auth/authorize?oauthtoken=595b4eb0ba2003327083841d5e7d8f81=nl%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 25.07.2017 Vulnerability type:| XSS Vulnerability status:...
gerflor.com XSS vulnerability
Vulnerable URL: http://www.gerflor.com/search.html?search=%22--%3E%20%3C/script%3E%3Csvg/onload=%27;alert%28/XSSPOSED/%29;%27%3E Details: Description| Value ---|--- Patched:| Yes, at 06.04.2017 Latest check for patch:| 06.04.2017 07:59 GMT Vulnerability type:| XSS Vulnerability status:| Publicly...
ralangensfiber.se XSS vulnerability
Vulnerable URL: http://ralangensfiber.se/index.php/"';-- Details: Description| Value ---|--- Patched:| No Latest check for patch:| 25.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated Google Pagerank| 0 VIP website status:| No Check...
mart.walcost.com XSS vulnerability
Vulnerable URL: http://mart.walcost.com/search?query=%3C%2Fscript%3E%3Cscript%3Ealert%28%27XSSPOSED%27%29%3C%2Fscript%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 25.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / No...
rss.planex.co.jp Open Redirect vulnerability
Vulnerable URL: http://rss.planex.co.jp/service/redirect.php?id=2222=https://www.xssposed.org/ Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated...
Amazon Shop 5.0.0 XSS vuln.
Amazon Shop 5.0.0 XSS vuln. Vuln. dicovered by : r0t Date: 26 nov. 2005 Orginal advisory:http://pridels.blogspot.com/2005/11/amazon-shop-500-xss-vuln.html Vendor:http://www.ghostscripter.com/amazonshop.php affected version:5.0.0 and prior Product description: With Amazon Shop you can run your ver...