Lucene search
K

110 matches found

Openbugbounty
Openbugbounty
added 2016/05/26 7:7 a.m.9 views

m.fr.ford.be XSS vulnerability

Open Bug Bounty ID: OBB-156501 Description| Value ---|--- Affected Website:| m.fr.ford.be Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2016/05/26 7:6 a.m.27 views

ford.com.tr XSS vulnerability

Open Bug Bounty ID: OBB-156498 Description| Value ---|--- Affected Website:| ford.com.tr Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2016/05/26 7:5 a.m.15 views

intpublish-couk.engine.ford.com XSS vulnerability

Vulnerable URL: http://intpublish-couk.engine.ford.com/cs/ContentServer?pagename=UKENENGInE%2FLayoutDLBing=UKENENGInE=Page=1204903584770=morpeth=FF%27;alert%28/OPENBUGBOUNTY/%29;//=UKEN Details: Description| Value ---|--- Patched:| No Latest check for patch:| 27.07.2017 Vulnerability type:| XSS...

6.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2016/05/26 7:5 a.m.6 views

ford.no XSS vulnerability

Open Bug Bounty ID: OBB-156497 Description| Value ---|--- Affected Website:| ford.no Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat Sheet...

6.4AI score
Exploits0
Openbugbounty
Openbugbounty
added 2016/05/26 6:2 a.m.11 views

ford.de XSS vulnerability

Vulnerable URL: http://www.ford.de/AktuelleAktionen/FordFlatrate/mdp=f1205014384002'" Details: Description| Value ---|--- Patched:| Yes, at 08.12.2016 Latest check for patch:| 08.12.2016 16:57 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 31486 VIP website...

6.2AI score
Exploits0
hackapp
hackapp
added 2016/04/01 9:34 a.m.21 views

Ford Service - BSD license, Dynamic Code Loading, External URLs vulnerabilities

HackApp vulnerability scanner discovered that application Ford Service published at the 'play' market has multiple vulnerabilities...

0.5AI score
Exploits0References1Affected Software1
hackapp
hackapp
added 2016/04/01 8:53 a.m.7 views

Alan Ford - Dynamic Code Loading, External URLs, SD-card access vulnerabilities

HackApp vulnerability scanner discovered that application Alan Ford published at the 'play' market has multiple vulnerabilities...

0.3AI score
Exploits0References1Affected Software1
Openbugbounty
Openbugbounty
added 2016/03/11 8:2 a.m.20 views

shop.ford.com XSS vulnerability

Vulnerable URL: http://shop.ford.com/build/fiesta/2015%27-alert%28/XSSPOSED/%29-%27/?lang=en=false%27-alert%28/XSSPOSED/%29-%27=1〈=en=config/chooseyourpath/ Details: Description| Value ---|--- Patched:| Yes, at 26.07.2017 Latest check for patch:| 26.07.2017 21:36 GMT Vulnerability type:| XSS...

6.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2016/03/11 8:1 a.m.16 views

showroom.ford.com XSS vulnerability

Vulnerable URL: http://www.showroom.ford.com/FDShowroom.jsp?=1%27-alert%28/XSSPOSED/%29-%27〈=en=config Details: Description| Value ---|--- Patched:| Yes, at 26.07.2017 Latest check for patch:| 26.07.2017 21:36 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 2256...

6.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2016/02/21 10:53 p.m.11 views

performanceparts.ford.com XSS vulnerability

Vulnerable URL: http://www.performanceparts.ford.com/parts/search.asp?q=%22%3E%3Cscript%3Ealert%28/XSSPOSED/%29%3C/script%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown ...

6.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2016/01/21 4:39 a.m.10 views

johnsonbrothersford.com XSS vulnerability

Vulnerable URL: http://www.johnsonbrothersford.com/pictures/viewlarge.php?picturename=%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank|...

6.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2015/11/05 8:41 a.m.10 views

autotrader.ca XSS vulnerability

Vulnerable URL: http://www.autotrader.ca/cars/ford/escape/?hprc=True=True=New-Used'--...

6.9AI score
Exploits0
ThreatPost
ThreatPost
added 2015/02/20 11:28 a.m.9 views

Trey Ford on Mapping the Internet with Project Sonar

Trey Ford from Project Sonar describes the group’s initiative at Kaspersky’s Security Analyst Summit. The Rapid7 service scans public networks for applications, software, and hardware, then analyzes that cache of information to learn trends and gain insight on common vulnerabilities. Trey Ford...

1.8AI score
Exploits0References2
NVD
NVD
added 2014/10/02 10:55 a.m.18 views

CVE-2014-6884

The Ford Credit Account Manager aka com.fordcredit.accountmanager application 1.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS5.9AI score0.00266EPSS
Exploits0References3
Prion
Prion
added 2014/10/02 10:55 a.m.12 views

Design/Logic Flaw

The Ford Credit Account Manager aka com.fordcredit.accountmanager application 1.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS6.4AI score0.00266EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2014/10/02 10:0 a.m.26 views

CVE-2014-6884

The Ford Credit Account Manager aka com.fordcredit.accountmanager application 1.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.9AI score0.00266EPSS
Exploits0References3
CVE
CVE
added 2014/10/02 10:0 a.m.34 views

CVE-2014-6884

CVE-2014-6884 affects the Ford Credit Account Manager app (com.fordcredit.accountmanager) for Android v1.0.1, where TLS connections do not verify X.509 certificates, enabling MITM attackers to spoof servers and exfiltrate sensitive data per the vulnerability description.

5.4CVSS6AI score0.00266EPSS
Exploits0References3Affected Software1
ThreatPost
ThreatPost
added 2013/08/06 1:58 p.m.114 views

Scenes from Black Hat USA 2013

!More from Wednesday’s Legal Access Panel Briefinghttps://media.threatpost.com/wp-content/uploads/sites/103/2013/08/07043123/panel.j...

7.3AI score
Exploits0References16
Packet Storm
Packet Storm
added 2012/11/16 12:0 a.m.63 views

Broadcom BCM4325 / BCM4329 Denial Of Service

Exploit Author: CoreLabs Core Security Technologies fue descubierta por el investigador argentino Andrés Blanco, Vendor Homepage: Software Link: download link if available Version: 1.0 Tested on: Apple iPhone 3GS Apple iPod 2G HTC Touch Pro 2 HTC Droid Incredible Samsung Spica Acer Liquid Motorol...

7.8CVSS0.1AI score0.12862EPSS
Exploits3
exploitpack
exploitpack
added 2012/11/15 12:0 a.m.26 views

Broadcom BCM4325 BCM4329 Devices - Denial of Service

Broadcom BCM4325 BCM4329 Devices - Denial of Service Exploit Author: CoreLabs Core Security Technologies fue descubierta por el investigador argentino Andrés Blanco, Vendor Homepage: Software Link: download link if available Version: 1.0 Tested on: Apple iPhone 3GS Apple iPod 2G HTC Touch Pro 2 H...

0.6AI score
Exploits0
Rows per page
Query Builder