85 matches found
CHAOS Framework v3.0 - Generate Payloads And Control Remote Windows Systems
CHAOS is a PoC that allow generate payloads and control remote operating systems. Features Feature | Windows | Mac | Linux ---|---|---|--- Reverse Shell | X | X | X Download File | X | X | X Upload File | X | X | X Screenshot | X | X | X Keylogger | X | | Persistence | X | | Open URL | X | X | X...
HPE XP P9000 Command View Advanced Edition Software Open URL Redirection Vulnerability
HPE XP P9000 Command View Advanced Edition Software is a full-featured device manager for HPE XP P9500 and XP disk array products. An open URL redirection vulnerability exists in DevMgr, TSMgr, and RepMgr in HPE XP P9000 Command View Advanced Edition Software CVAE 7.0.0-00 - 8.60-00 excluding...
CVE-2018-7091
HPE XP P9000 Command View Advanced Edition Software CVAE has open URL redirection vulnerability in versions 7.0.0-00 to earlier than 8.60-00 of DevMgr, TSMgr and RepMgr...
Design/Logic Flaw
HPE XP P9000 Command View Advanced Edition Software CVAE has open URL redirection vulnerability in versions 7.0.0-00 to earlier than 8.60-00 of DevMgr, TSMgr and RepMgr...
CVE-2018-7091
HPE XP P9000 Command View Advanced Edition Software (CVAE) is affected by an open URL redirection vulnerability in CVAE 7.0.0-00 through versions prior to 8.60-00 for DevMgr, TSMgr and RepMgr. The issue is described across multiple sources (NVD, CNVD, CVE listing) as an open URL redirection flaw;...
CVE-2018-7091
HPE XP P9000 Command View Advanced Edition Software CVAE has open URL redirection vulnerability in versions 7.0.0-00 to earlier than 8.60-00 of DevMgr, TSMgr and RepMgr...
Grammarly: `open-url` command allows opening unlimited number of tabs pointing to arbitrary URLs
Summary Attacker could trigger Grammarly extension's open-url command to open any number of tabs pointing to any origin including internal, e.g. chrome:// and cause "infinite Chrome DoS" if attacker's page is pinned. Description Page could Init Grammarly popup editor no user gesture, helper Event...
Security Bulletin: FileNet Workplace can be affected by the Open URL Redirection Vulnerability (CVE-2016-5878)
Summary FileNet Workplace is susceptible to the Open URL Redirection Vulnerability. Vulnerability Details Relevant CVE Information: CVEID: CVE-2016-5878 DESCRIPTION: IBM FileNet WorkPlace could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a...
hot-odds.info Open Redirect vulnerability
Open Bug Bounty ID: OBB-418651 Description| Value ---|--- Affected Website:| hot-odds.info Vulnerable Application:| Custom Code Vulnerability Type:| Open Redirect / CWE-601 CVSSv3 Score:| 3.4 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:N Remediation Guide:| OWASP Open Redirect Cheat Sheet Vulnerab...
Design/Logic Flaw
An Open URL Redirect issue exists in Zurmo 3.2.1.57987acc3018 via an http: URL in the redirectUrl parameter to app/index.php/meetings/default/createMeeting...
CVE-2017-16569
An Open URL Redirect issue exists in Zurmo 3.2.1.57987acc3018 via an http: URL in the redirectUrl parameter to app/index.php/meetings/default/createMeeting...
CVE-2017-16569
An Open URL Redirect issue exists in Zurmo 3.2.1.57987acc3018 via an http: URL in the redirectUrl parameter to app/index.php/meetings/default/createMeeting...
CVE-2017-16569
Zurmo 3.2.1.57987acc3018 is affected by an open URL redirect via the redirectUrl parameter in app/index.php/meetings/default/createMeeting. This vulnerability allows redirection to an http: URL, enabling potential abuse to redirect users to a malicious domain. The issue is documented across multi...
CVE-2017-1000027
Koozali Foundation SME Server versions 8.x, 9.x, 10.x are vulnerable to an open URL redirect vulnerability in the user web login function resulting in unauthorized account access...
CVE-2017-1000027
Koozali Foundation SME Server versions 8.x, 9.x, 10.x are vulnerable to an open URL redirect vulnerability in the user web login function resulting in unauthorized account access...
CVE-2017-1000027
Koozali Foundation SME Server versions 8.x, 9.x, 10.x are vulnerable to an open URL redirect vulnerability in the user web login function resulting in unauthorized account access...
CVE-2017-1000027
CVE-2017-1000027 concerns Koozali Foundation SME Server (versions 8.xβ10.x). The vulnerability is an open URL redirect in the user web login function, enabling unauthorized account access. The available connected documents confirm the affected product family and the open redirect flaw as the root...
Khan Academy: OPEN URL REDIRECT through PNG files
An abuse of the imageurl parameter when saving a CS program was able to create an arbitrary external redirect. We now validate the parameter before using it. I have found a way through which an attacker can use png files to redirect to malicious domain...
sabacp.com vulnerability
Vulnerable URL: http://www.sabacp.com/website/openurl.php?i=8=https://www.xssposed.org/ Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability status:| Publicly disclosed Alexa Rank| 4352752 Google Pagerank| 0 VIP website status:| No Check sabacp.com SS...
PayPal Inc - Open URL Redirect Web Vulnerability
Document Title: =============== PayPal Inc - Open URL Redirect Web Vulnerability References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1611 Video: https://www.youtube.com/watch?v=uI1a7EgHNNU Release Date: ============= 2015-10-01 Vulnerability Laboratory ID VL-ID:...