EUVD-2022-33892

Malicious code in bioql PyPI...

CVE-2022-29557

LexisNexis Firco Compliance Link 3.7 allows CSRF...

lexisnexis.com Cross Site Scripting vulnerability OBB-3363394

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

CVE-2022-29557

LexisNexis Firco Compliance Link 3.7 allows CSRF...

Cross site request forgery (csrf)

LexisNexis Firco Compliance Link 3.7 allows CSRF...

LexisNexis Firco Compliance Link 跨站请求伪造漏洞

LexisNexis Firco Compliance Link is an application from LexisNexis, Inc. for automating the online compliance process. A security vulnerability exists in LexisNexis Firco Compliance Link version 3.7 that stems from the presence of SRF...

CVE-2022-29557

LexisNexis Firco Compliance Link 3.7 allows CSRF...

PT-2023-12978 · Lexisnexis · Lexisnexis Firco Compliance Link

Name of the Vulnerable Software and Affected Versions: LexisNexis Firco Compliance Link version 3.7 Description: The issue allows for Cross-Site Request Forgery CSRF attacks. Recommendations: For LexisNexis Firco Compliance Link version 3.7, update to a newer version that contains a fix for this...

CVE-2022-29557

LexisNexis Firco Compliance Link 3.7 allows CSRF...

CVE-2022-29557

CVE-2022-29557 affects LexisNexis Firco Compliance Link 3.7. The linked documents describe a Cross‑Site Request Forgery (CSRF) vulnerability in this product/version, with a reported CVSS v3.1 base score of 8.8 (HIGH) and an impact on confidentiality, integrity, and availability. The attack requir...

w3.lexisnexis.com Cross Site Scripting vulnerability OBB-2152678

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

lexisnexis.com Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-988457 Security Researcher k0t Helped patch 2146 vulnerabilities Received 9 Coordinated Disclosure badges Received 97 recommendations , a holder of 9 badges for responsible and coordinated disclosure, found a security vulnerability affecting lexisnexis.com website and its...

lexisnexis.com Open Redirect vulnerability

Open Bug Bounty ID: OBB-695584 Description| Value ---|--- Affected Website:| lexisnexis.com Open Bug Bounty Program:| View Open Bug Bounty Program Vulnerable Application:| hidden until disclosure Vulnerability Type:| Open Redirect / CWE-601 CVSSv3 Score:| hidden until disclosure Disclosure...

store.lexisnexis.com XSS vulnerability

Open Bug Bounty ID: OBB-630642 Description| Value ---|--- Affected Website:| store.lexisnexis.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

cert-support.lexisnexis.com XSS vulnerability

Vulnerable URL: https://cert-support.lexisnexis.com/system/selfservice.controller?CONFIGURATION=1044ID=1TOPICTREENODES=OFFSET==STARTPAGEFRAMELESS=10372&i2v;=%3Cscript/src=data:,alert%282%29-%22%22/%3E%3Cimg%20src=1%20onerror=alert%28/OPENBUGBOUNTY/%29%3E Details: Description| Value ---|---...

lexisnexis.com XSS vulnerability

Vulnerable URL: https://www.lexisnexis.com/practiceadvantage/videos/mattermanager/mattermgcontroller.swf?csConfigFile=http://irc.0x539.xyz/hp.xml Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 5589 VIP website...

www1.lexisnexis.co.uk XSS vulnerability

Vulnerable URL: http://www1.lexisnexis.co.uk/customerservicecentre/lnbutterworths/lnbdemo/flashdetection.swf?flashContentURL=javascript:alert/XSSPOSED/ Details: Description| Value ---|--- Patched:| Yes, at 20.05.2016 Latest check for patch:| 20.05.2016 16:24 GMT Vulnerability type:| XSS...

lexisnexis.com.sg XSS vulnerability

Vulnerable URL: https://www.lexisnexis.com.sg/hkshop/store/message.asp?message=%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| Yes, at 18.01.2016 Latest check for patch:| 18.01.2016 11:29 GMT Vulnerability type:| XSS Vulnerability status:| Publicly...

lexisnexis.com XSS vulnerability

Vulnerable URL: https://www.lexisnexis.com/duediligence/image.asp?image=%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| Yes, at 03.12.2015 Latest check for patch:| 03.12.2015 20:05 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed...

Threat Outbreak Alert: Fake LexisNexis Invoice Attachment Email Messages on June 21, 2013

Medium Alert ID: 29750 First Published: 2013 June 24 11:50 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain an invoice attachment from LexisNexis for the recipient. The text in the email message attempts to convince the...