Information disclosure

ASUS RT-AC and RT-N devices with firmware through 3.0.0.4.380.7378 allow JSONP Information Disclosure such as the SSID...

CVE-2017-5892

ASUS RT-AC and RT-N devices with firmware before 3.0.0.4.380.7378 allow JSONP Information Disclosure such as a network map...

CVE-2017-5892

ASUS RT-AC* and RT-N* routers with firmware older than 3.0.0.4.380.7378 expose a JSONP information-disclosure flaw that can reveal router data such as a network map. The vulnerability is covered by CVE-2017-5892. Most CSRF-related issues were fixed in firmware 3.0.0.4.380.7378; the JSONP informat...

CVE-2017-8877

ASUS RT-AC and RT-N devices with firmware through 3.0.0.4.380.7378 allow JSONP Information Disclosure such as the SSID...

CVE-2017-8877

Consolidated risk: CVE-2017-8877 affects ASUS RT-AC* and RT-N* routers with firmware up to 3.0.0.4.380.7378. The connected CNVD entry and NVD description indicate an information-disclosure flaw in which JSONP responses can reveal sensitive data (notably the SSID). No explicit exploit details, aff...

CVE-2017-5892

ASUS RT-AC and RT-N devices with firmware before 3.0.0.4.380.7378 allow JSONP Information Disclosure such as a network map...

Cross-site Request Forgery (CSRF)

github.com/ant0ine/go-json-rest is vulnerable to cross-site request forgery. A malicious user can communicate with an JSONP endpoint using a SWF OBJECT to bypass the Same Origin Policy...

HackerOne: Stealing contact form data on www.hackerone.com using Marketo Forms XSS with postMessage frame-jumping and jQuery-JSONP

Hi, I just discovered that there's a scenario where the Marketo Forms solution being used on www.hackerone.com can actually be abused, using a few fun techniques, to trigger an XSS in the Cross-Origin-iframe being used by Marketo. This results in eavesdropping of the data being sent in the...

langrenn.njaard.no XSS vulnerability

Vulnerable URL: http://langrenn.njaard.no/Sponsor/get?placeHolder=5=200000195=1896=0=0=prompt/OPENBUGBOUNTY/...

blog.legobrasil.com.br XSS vulnerability

Vulnerable URL: http://blog.legobrasil.com.br/admin-portal/json/?jsonp=prompt/OPENBUGBOUNTY/...

m.kapook.com XSS vulnerability

Vulnerable URL: http://m.kapook.com/goldpricejson.php?jsonp=1=prompt/OPENBUGBOUNTY/...

news.gestalten.com XSS vulnerability

Vulnerable URL: http://news.gestalten.com/jsonp/api.php?callback=prompt/OPENBUGBOUNTY/...

Mail.ru: Утечка информации через JSONP (XXSI)

Information disclosure for logged-in user in out-of-scope service...

CVE-2015-2912

The JSONP endpoint in the Studio component in OrientDB Server Community Edition before 2.0.15 and 2.1.x before 2.1.1 does not properly restrict callback values, which allows remote attackers to conduct cross-site request forgery CSRF attacks, and obtain sensitive information, via a crafted HTTP...

Cross site request forgery (csrf)

The JSONP endpoint in the Studio component in OrientDB Server Community Edition before 2.0.15 and 2.1.x before 2.1.1 does not properly restrict callback values, which allows remote attackers to conduct cross-site request forgery CSRF attacks, and obtain sensitive information, via a crafted HTTP...

CVE-2015-2912

CVE-2015-2912 affects OrientDB Studio (Community Edition) via its JSONP endpoint. The vulnerability allows CSRF by not properly restricting JSONP callback values, enabling an unauthenticated or remote attacker to perform actions and potentially access sensitive data. Affected versions are OrientD...

CVE-2015-2912

The JSONP endpoint in the Studio component in OrientDB Server Community Edition before 2.0.15 and 2.1.x before 2.1.1 does not properly restrict callback values, which allows remote attackers to conduct cross-site request forgery CSRF attacks, and obtain sensitive information, via a crafted HTTP...

Why your API is not a security-vulnerability warning-the black bar safety net

0×0 0 background description Some time ago I to Spree Commerce company reported its API path exists JSONP+CSRF vulnerability issues. Similarly, the Instagram API the presence of CSRF vulnerabilities. Disqus, a Stripe and Shopify API via JSONP leakage of privacy information. All this the root of t...

Flash Player < 19.0.0.185 Multiple Vulnerabilities (APSB15-23)

Binary data 9004.prm...

Rosetta-Flash JSONP Vulnerability

Overview This description taken from the pull request provided by Patrick Kettner. Versions 6.1.0 and earlier of hapi are vulnerable to a rosetta-flash attack, which can be used by attackers to send data across domains and break the browser same-origin-policy. Recommendation - Update hapi to...