Oxwall Forum v1.8.1 - Persistent Cross Site Vulnerability

Document Title: =============== Oxwall Forum v1.8.1 - Persistent Cross Site Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1740 Release Date: ============= 2016-02-22 Vulnerability Laboratory ID VL-ID: ====================================...

Prezi Bug Bounty #7 - (Charts) Persistent Vulnerability

Document Title: =============== Prezi Bug Bounty 7 - Charts Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1723 Release Date: ============= 2016-02-22 Vulnerability Laboratory ID VL-ID: ==================================== 1723...

UBNT AirCRM - 3 x Persistent Cross Site Scripting

Document Title: =============== UBNT AirCRM - 3 x Persistent Cross Site Scripting References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1739 Video View: https://www.youtube.com/watch?v=5uiXWxJzNFk Advisory: http://www.vulnerability-lab.com/getcontent.php?id=1728 Release Date:...

iFixIt Profile Cross Site Scripting

Document Title: =============== ifixit Bug Bounty 6 -Profile Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1701 Video: http://www.vulnerability-lab.com/getcontent.php?id=1702 Release Date: ============= 2016-02-18 Vulnerability...

File Sharing Manager 1.0 Local File Inclusion / File Upload

Document Title: =============== File Sharing Manager v1.0 iOS - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1715 Release Date: ============= 2016-02-09 Vulnerability Laboratory ID VL-ID: ==================================...

Getdpd BB #4 - (name) Persistent Validation Vulnerability

Document Title: =============== Getdpd BB 4 - name Persistent Validation Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1568 ID: 14772 Release Date: ============= 2016-02-08 Vulnerability Laboratory ID VL-ID:...

Getdpd BB #4 - (name) Persistent Validation Vulnerability

Document Title: =============== Getdpd BB 4 - name Persistent Validation Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1568 ID: 14772 Release Date: ============= 2016-02-08 Vulnerability Laboratory ID VL-ID:...

Getdpd BB #5 - Persistent Filename Vulnerability

Document Title: =============== Getdpd BB 5 - Persistent Filename Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1569 ID: 14773 Release Date: ============= 2016-02-05 Vulnerability Laboratory ID VL-ID: ====================================...

Getdpd BB #3 - Persistent Cross Site Scripting Vulnerability

Document Title: =============== Getdpd BB 3 - Persistent Cross Site Scripting Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1567 ID: 14771 Release Date: ============= 2016-02-03 Vulnerability Laboratory ID VL-ID:...

Getdpd BB #1 - Persistent Web Vulnerability

Document Title: =============== Getdpd BB 1 - Persistent Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1464 ID: 14770 Release Date: ============= 2016-02-02 Vulnerability Laboratory ID VL-ID: ==================================== 1564...

File Hub 3.3 Arbitrary File Upload / Script Insertion

Document Title: =============== File Hub v3.3 iOS Wifi - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1695 Release Date: ============= 2016-02-01 Vulnerability Laboratory ID VL-ID: ==================================== 1695...

Secure Item Hub 1.0 iOS - Multiple Vulnerabilities

Document Title: =============== Secure Item Hub v1.0 iOS - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1682 Release Date: ============= 2016-01-27 Vulnerability Laboratory ID VL-ID: ==================================== 16...

Sawef - Send Attack Web Forms

SAWEF - Send Attack Web Forms DESCRIPTION The purpose of this tool is to be a Swiss army knife for anyone who works with HTTP, so far it she is basic, bringing only some of the few features that want her to have, but we can already see in this tool: - Email Crawler in sites - Crawler forms on the...

Mozilla: CORS preflight is bypassed when non-standard Content-Type headers are received (MFSA 2015-127)

Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 improperly follow the CORS cross-origin request algorithm for the POST method in situations involving an unspecified Content-Type header manipulation, which allows remote attackers to bypass the Same Origin Policy by leveraging the lack...

CF Image Host 1.6.6 Cross Site Request Forgery Vulnerability

CF Image Host version 1.6.6 suffers from a cross site request forgery vulnerability. CF Image Host 1.6.6 Cross Site Request Forgery Vulnerability Vendor: ==================================== codefuture.co.uk/projects/imagehost Product: =================================== CF Image Host 1.65 - 1.6....

Magento Bug Bounty #24 - Multiple CSRF Web Vulnerabilities

Document Title: =============== Magento Bug Bounty 24 - Multiple CSRF Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1643 APPSEC-1122 Video: http://www.vulnerability-lab.com/getcontent.php?id=1642 Release Date: ============= 2015-11-...

Design/Logic Flaw

Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 improperly follow the CORS cross-origin request algorithm for the POST method in situations involving an unspecified Content-Type header manipulation, which allows remote attackers to bypass the Same Origin Policy by leveraging the lack...

WiFi Drive CR v1.0 iOS - Persistent Filename Dir List Vulnerability

Document Title: =============== WiFi Drive CR v1.0 iOS - Persistent Filename Dir List Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1595 Release Date: ============= 2015-09-23 Vulnerability Laboratory ID VL-ID:...

My.WiFi USB Drive 1.0 File Inclusion

Document Title: =============== My.WiFi USB Drive v1.0 iOS - File Include Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1589 Release Date: ============= 2015-09-24 Vulnerability Laboratory ID VL-ID: ==================================== 15...

WiFi Drive CR 1.0 Script Insertion

Document Title: =============== WiFi Drive CR v1.0 iOS - Persistent Filename Dir List Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1595 Release Date: ============= 2015-09-23 Vulnerability Laboratory ID VL-ID:...