101 matches found
innotool-austria.com XSS vulnerability
Open Bug Bounty ID: OBB-382591 Description| Value ---|--- Affected Website:| innotool-austria.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention...
arp-austria.at XSS vulnerability
Vulnerable URL: https://www.arp-austria.at/arp-induktive-ladestation-qi-2x-usb-4185398-5'" Details: Description| Value ---|--- Patched:| No Latest check for patch:| 14.01.2018 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 958550 VIP website status:| No Coordinated...
Threat Outbreak Alert RuleID30191: Email Messages Distributing Malicious Software on August 14, 2017
Medium Alert ID: 54837 First Published: 2017 August 14 15:17 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID30191 may contain the following files: Name |...
austria-forum.org XSS vulnerability
Vulnerable URL: https://austria-forum.org/Search.jsp?category=AEIOU=userdefined=name=y=%22%3E%3Csvg/onload=alert/OPENBUGBOUNTY/%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 09.11.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank|...
Certec EDV GmbH atvise scada cross-site scripting vulnerability
Certec EDV GmbH is based in Austria. atvise is a web-based HMI monitoring and data acquisition system. A cross-site scripting vulnerability exists in Certec EDV GmbH atvise scada. An attacker may be able to exploit this vulnerability to execute arbitrary script code in the browser of an...
canon.at XSS vulnerability
Vulnerable URL: http://www.canon.at/search/?q="-alert/OPENBUGBOUNTY/-" Details: Description| Value ---|--- Patched:| Yes, at 22.02.2017 Latest check for patch:| 22.02.2017 15:23 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 175888 VIP website status:| No Check...
austria.at XSS vulnerability
Open Bug Bounty ID: OBB-213563 Description| Value ---|--- Affected Website:| austria.at Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
Weather Austria XL PRO - Customized SSL, Dangerous filesystem permissions, Redefined SSL Common Names verifier vulnerabilities
HackApp vulnerability scanner discovered that application Weather Austria XL PRO published at the 'play' market has multiple vulnerabilities...
Weather for Austria - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities
HackApp vulnerability scanner discovered that application Weather for Austria published at the 'play' market has multiple vulnerabilities...
iSKI Austria - Customized SSL, Exported components, External URLs vulnerabilities
HackApp vulnerability scanner discovered that application iSKI Austria published at the 'play' market has multiple vulnerabilities...
Weight Watchers Österreich - External URLs, Unsafe deleting vulnerabilities
HackApp vulnerability scanner discovered that application Weight Watchers Österreich published at the 'play' market has multiple vulnerabilities...
Harkonnen Operation — Malware Campaign that Went Undetected for 12 Years
A huge data-stealing cyber espionage campaign that targeted Banks, Corporations and Governments in Germany, Switzerland, and Austria for 12 years, has finally come for probably the longest-lived online malware operation in history. The campaign is dubbed as 'Harkonnen Operation' and involved more...
Report: UN Nuclear Regulator Infected with Malware
The United Nations’ nuclear regulatory body, the International Atomic Energy Agency IAEA, announced yesterday that it found malicious software on a number of its machines, but that its networks have not been compromised. According to a Reuters report, the infected computers were housed in a commo...
Mobilkom Austria Cross Site Scripting
G'Day Ladies and Gents, it has been already over 3 weeks now, since they've told me they're going to fix this flaws, as soon as they've resolved more important tasks... I think they had enough time, so here is my first disclosure. Just a little, not that important non-persistent XSS. Cookie...
Windows Live Messenger 2009 Denial Of Service
Product: Windows Live Messenger 2009 Build 14.0.8089.726 Vulnerability: ActiveX - Denial of Service Discussion: Vulnerability is in Activex Controlmsgsc.14.0.8089.726.dll Sending a string to ViewProfile , cause a crash on msnmsgr.exe must be signed in Msn Messenger account for triggerin the...
Microsoft Windows Live Messenger 2009 - ActiveX Denial of Service
Microsoft Windows Live Messenger 2009 - ActiveX Denial of Service Product: Windows Live Messenger 2009 Build 14.0.8089.726 Vulnerability: ActiveX - Denial of Service Discussion: Vulnerability is in Activex Controlmsgsc.14.0.8089.726.dll Sending a string to ViewProfile , cause a crash on msnmsgr.e...
Microsoft Windows Live Messenger 2009 - ActiveX Denial of Service
Product: Windows Live Messenger 2009 Build 14.0.8089.726 Vulnerability: ActiveX - Denial of Service Discussion: Vulnerability is in Activex Controlmsgsc.14.0.8089.726.dll Sending a string to ViewProfile , cause a crash on msnmsgr.exe must be signed in Msn Messenger account for triggerin the...
Novell eDirectory 8.8 SP5 Denial of Service
No description provided by source. Product: Novell eDirectory 8.8 sp5 for Windows Vulnerability: Denial of Service Discussion: Vulnerability in '/dhost/modules?I:' Sending long strings to '/dhost/modules?I:' causes a DoS crashing dhost.exe Also in last weeks published another bug in 'modules?L:' ...
social-sql.txt
HACKATTACK Advisory 2008-11-20Social Engine 2.7 CRLF Injection + SQL injection Details Product: Social Engine Security-Risk: moderate Remote-Exploit: yes Vendor-URL: http://www.socialengine.net/ Vendor-Status: informed Advisory-Status: published Credits Discovered by: David Vieira-Kurz of...
Unfixed XSS vulnerability at www.austria-lustenau.info
Security researcher kInGoFcHaOs, has submitted on 28/07/2008 a cross-site-scripting XSS vulnerability affecting www.austria-lustenau.info, which at the time of submission ranked 729186 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 06/08/2008...