43 matches found
Gratipay: XSS Via Method injection
Hi guys i found a low risk vuln , when you request a page on gratipay.com with uncommon Method , the server responds with error message . Invalid Method 'Invalid HTTP method:TTEGETTT with out escaping chars so when you inject an html element with method you can trigger an XSS . Steps to reproduce...
Design/Logic Flaw
Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, and 4.5 does not properly check the permissions of objects that use reflection, which allows remote attackers to execute arbitrary code via 1 a crafted XAML browser application XBAP or 2 a crafted .NET Framework application, aka "Anonymous Method...
Response eWebEditor vulnerability to upload file 5 0 0 error of the method-vulnerability warning-the black bar safety net
Source: van Believe everyone on the eWeb is not strange Everyone in the engage in Station the possibility of discovery have brought you the directory inside the pass up the Malaysian or pony is 5 0 0 error Invasion for so long,found that in this case,Upload a word,can connect! the eval of the wor...