CVE-2019-9736

DOM-based XSS exists in 1024Tools Markdown 1.0 via vectors involving the 'EMBED SRC="data:image/svg+xml' substring...

CVE-2019-9738

jimmykuu Gopher 2.0 has DOM-based XSS via vectors involving the 'EMBED SRC="data:image/svg+xml' substring...

CVE-2019-9737

Editor.md 1.5.0 has DOM-based XSS via vectors involving the 'EMBED SRC="data:image/svg+xml' substring...

CVE-2019-9737

Editor.md 1.5.0 has DOM-based XSS via vectors involving the 'EMBED SRC="data:image/svg+xml' substring...

CVE-2019-9737

Editor.md 1.5.0 has DOM-based XSS via vectors involving the 'EMBED SRC="data:image/svg+xml' substring...

CVE-2019-9738

jimmykuu Gopher 2.0 has DOM-based XSS via vectors involving the 'EMBED SRC="data:image/svg+xml' substring...

CVE-2019-9736

CVE-2019-9736 affects 1024Tools Markdown 1.0 with a DOM-based XSS vulnerability triggered by embedding an SVG data URL via the substring ‘<EMBED SRC="data:image/svg+xml'’. The NVD entries cite CVSS2/3 base scores of 4.3 (MEDIUM) and 6.1 (MEDIUM), respectively; attack vector is NETWORK (CVSS2) ...

CVE-2019-9738

CVE-2019-9738 affects jimmykuu Gopher 2.0 and is a DOM-based XSS triggered via an embedded SVG payload in an EMBED SRC="data:image/svg+xml" string. Root cause: DOM-based XSS in the client-side handling of embeds. Impact is described by CVSS metrics in the sources: CVSS v2 base score 4.3 (Network,...

CVE-2019-9737

Summary: CVE-2019-9737 affects Editor.md 1.5.0 with a DOM-based XSS vulnerability triggered by vectors including the substring <EMBED SRC="data:image/svg+xml.** The root cause is persistent insufficient sanitization of user input that can introduce base64-encoded content, enabling script execu...

CVE-2019-9736

DOM-based XSS exists in 1024Tools Markdown 1.0 via vectors involving the 'EMBED SRC="data:image/svg+xml' substring...

Rockstar Games: DOM based XSS on /GTAOnline/tw/starterpack/

In this report the researcher identified a DOM-based XSS vulnerability impacting localized versions of the https://www.rockstargames.com/GTAOnline/ site in varying locations. This attack also took advantage of an Open Redirect vulnerability on another part of the site to demonstrate how an attack...

Rockstar Games: DOM based XSS on /GTAOnline/de/news/article via "returnUrl" parameter

In this report, the researcher identified a DOM-based cross-site scripting vulnerability affecting localized versions of the GTA Online screenshots site, e.g. https://www.rockstargames.com/GTAOnline/jp/screens/. We have pushed out an update fixing this vulnerability so that it is no longer...

Mail.ru: Seven DOM-Based XSS Vulnerabilities | Execution in Login Sequence

DOM based XSS in tz.mail.ru tz.mail.ru belongs to extended scope I was able to exploit DOM XSS at the following endpoints. The vulnerability was exploitable on forbidden pages and the root cause lies in jquery. text https://tz.mail.ru/a/ https://tz.mail.ru/a/js/ https://tz.mail.ru/www/...

Automattic: DOM based XSS in the WooCommerce plugin

I have found a stored DOM based XSS in the order page at WooCommerce 3.5.6. The Data input from HTML element name shippingstate and billingstate in order page outputs data without escaping.When the victim read the page containing the payload, it executes the script. Steps to reproduce 1. From a...

PT-2019-16739 · Prometheus +1 · Prometheus +1

Name of the Vulnerable Software and Affected Versions: Prometheus versions prior to 2.7.1 Description: A stored, DOM based, cross-site scripting XSS flaw was found. An attacker could exploit this by convincing an authenticated user to visit a crafted URL on a Prometheus server, allowing for the...

Rockstar Games: Dom based xss on https://www.rockstargames.com/ via `returnUrl` parameter

In this report, the researcher identified a DOM-Based Cross-Site Scripting vulnerability in the Videos section of the GTAOnline site that appeared to only be exploitable on non-English versions of the site, such as /br/. The root cause appeared to lay in the ReturnUrl parameter in the logout...

Grammarly: DOM based CSS Injection on grammarly.com

Summary: An attacker can inject an external css file which can lead to phishing attacks and xss in older browsers. Description: Within the main.js file the following code exists: javascript t.prototype.componentWillMount = function var e = this.getCtx.nav.waypoint.query, t = e.extcss, n =...

HackerOne: DOM Based XSS in www.hackerone.com via PostMessage (bypass of #398054)

Summary The security fix by Marketo to resolve the issue reported by @adac95 in 398054 can be bypassed by purchasing an .ma domain for €60. Description The issues described by @adac95 in 398054 remain insufficiently resolved because of an inadequate security check by Marketo in the following piec...

ArangoDB Community Edition 3.4.2-1 Cross Site Scripting

Exploit Title: ArangoDB Community Edition 3.4.2-1 | Cross-Site Scripting Date: 17.02.2019 Exploit Author: Ozer Goker Vendor Homepage: https://www.arangodb.com Software Link: https://www.arangodb.com/download-major/ Version: 3.4.2-1 Introduction ArangoDB is a native multi-model, open-source databa...

Apache CouchDB 2.3.0 - Cross-Site Scripting Vulnerability

Exploit for multiple platform in category web applications Exploit Title: Apache CouchDB 2.3.0 | Cross-Site Scripting Exploit Author: Ozer Goker Vendor Homepage: http://couchdb.apache.org Software Link: http://couchdb.apache.org/download Version: 2.3.0 Introduction A CouchDB server hosts named...