39 matches found
EUVD-2017-8927
Malware in sbrugna...
EUVD-2017-8929
Malware in sbrugna...
EUVD-2017-8809
Malware in sbrugna...
EUVD-2017-8930
Malware in sbrugna...
paid-to-read-email.com Cross Site Scripting vulnerability OBB-3477169
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Authentication flaw
Paid To Read Script 2.0.5 has authentication bypass in the admin panel via a direct request, as demonstrated by the admin/viewvisitcamp.php fn parameter and the admin/userview.php uid parameter...
CVE-2017-17777
Paid To Read Script 2.0.5 has authentication bypass in the admin panel via a direct request, as demonstrated by the admin/viewvisitcamp.php fn parameter and the admin/userview.php uid parameter...
CVE-2017-17778
Paid To Read Script 2.0.5 has XSS via the referrals.php tier parameter or the admin/userview.php uid parameter...
CVE-2017-17779
Paid To Read Script 2.0.5 has SQL injection via the referrals.php id parameter...
Path traversal
Paid To Read Script 2.0.5 has full path disclosure via an invalid admin/userview.php uid parameter...
CVE-2017-17776
Paid To Read Script 2.0.5 has full path disclosure via an invalid admin/userview.php uid parameter...
CVE-2017-17778
Paid To Read Script 2.0.5 has XSS via the referrals.php tier parameter or the admin/userview.php uid parameter...
CVE-2017-17778
Paid To Read Script 2.0.5 has XSS via the referrals.php tier parameter or the admin/userview.php uid parameter...
CVE-2017-17779
Paid To Read Script 2.0.5 has SQL injection via the referrals.php id parameter...
Sql injection
Paid To Read Script 2.0.5 has SQL injection via the referrals.php id parameter...
CVE-2017-17779
Paid To Read Script 2.0.5 has SQL injection via the referrals.php id parameter...
CVE-2017-17776
Paid To Read Script 2.0.5 has full path disclosure via an invalid admin/userview.php uid parameter...
CVE-2017-17776
Paid To Read Script 2.0.5 has full path disclosure via an invalid admin/userview.php uid parameter...
CVE-2017-17778
Paid To Read Script 2.0.5 contains a cross-site scripting (XSS) vulnerability exploitable via the referrals.php tier parameter or the admin/userview.php uid parameter. The CVE entry is supported by multiple connected records (NVD and CNVD variants) stating the same vectors. The exact root cause a...
CVE-2017-17778
Paid To Read Script 2.0.5 has XSS via the referrals.php tier parameter or the admin/userview.php uid parameter...