rahnama.com XSS vulnerability

Vulnerable URL: http://www.rahnama.com/user/signin/ Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 6646 VIP website status:| Yes Check rahnama.com SSL connection:| Grade: B+...

signin.verizon.com XSS vulnerability

Vulnerable URL: https://signin.verizon.com/sso/authsso/loginProcess.jsp?target=javascript:alert/OPENBUGBOUNTY/ Details: Description| Value ---|--- Patched:| Yes, at 26.09.2017 Latest check for patch:| 26.09.2017 05:23 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa...

ohmyzip.com XSS vulnerability

Vulnerable URL: https://www.ohmyzip.com/account/signin?ret=" Details: Description| Value ---|--- Patched:| No Latest check for patch:| 27.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 12052 VIP website status:| Yes Check ohmyzip.com SSL connection:| Grade:...

xoom.com XSS vulnerability

Vulnerable URL: https://www.xoom.com/signIn?r=I0ez7 Details: Description| Value ---|--- Patched:| Yes, at 18.08.2016 Latest check for patch:| 18.08.2016 02:35 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 9350 Google Pagerank| 5 VIP website status:| Yes Check...

crazybelly.com XSS vulnerability

Open Bug Bounty ID: OBB-132205 Description| Value ---|--- Affected Website:| crazybelly.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

letsventure.com XSS vulnerability

Vulnerable URL: https://letsventure.com/signin?error=%22%3E%3Csvg/onload=alert%28/XSSPOSED/%29%3E=lol Details: Description| Value ---|--- Patched:| No Latest check for patch:| 25.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 20483 Google Pagerank| 0 VIP...

clickemprego.com XSS vulnerability

Vulnerable URL: http://www.clickemprego.com/signin.php?errmsg=--!%3E%22%3E%3C/script%20%3E%3Ciframe/onload=alert%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| Yes, at 25.07.2017 Latest check for patch:| 25.07.2017 19:50 GMT Vulnerability type:| XSS Vulnerability status:| Public...

HybridAuth 2.2.2 - Remote Code Execution

No description provided by source. | | / | \ | |/ |/ | / | | | | | | | | | | | | | / \ | | | || || | |\ | || | | / | | |/|| ||// \| HybridAuth = 2.2.2 Remote Code Execution Website : http://hybridauth.sourceforge.net/ Exploit Author : @u0x Pichaya Morimoto Release dates : August 5, 2014...

HybridAuth 2.1.2 Remote Code Execution

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 | | / | \ | |/ |/ | / | | | | | | | | | | | | | / \ | | | || || | |\ | || | | / | | |/|| ||// \| HybridAuth = 2.1.2 Remote Code Execution Website : http://hybridauth.sourceforge.net/ Exploit Author : @u0x Pichaya Morimoto Release dates :...

CVE-2013-6643

The OneClickSigninBubbleView::WindowClosing function in browser/ui/views/sync/oneclicksigninbubbleview.cc in Google Chrome before 32.0.1700.76 on Windows and before 32.0.1700.77 on Mac OS X and Linux allows attackers to trigger a sync with an arbitrary Google account by leveraging improper handli...

CVE-2013-6643

The OneClickSigninBubbleView::WindowClosing function in browser/ui/views/sync/oneclicksigninbubbleview.cc in Google Chrome before 32.0.1700.76 on Windows and before 32.0.1700.77 on Mac OS X and Linux allows attackers to trigger a sync with an arbitrary Google account by leveraging improper handli...

Design/Logic Flaw

The OneClickSigninBubbleView::WindowClosing function in browser/ui/views/sync/oneclicksigninbubbleview.cc in Google Chrome before 32.0.1700.76 on Windows and before 32.0.1700.77 on Mac OS X and Linux allows attackers to trigger a sync with an arbitrary Google account by leveraging improper handli...

CVE-2013-6643

The CVE-2013-6643 issue affects Google Chrome prior to 32.0.1700.76 on Windows and 32.0.1700.77 on macOS/Linux. It stems from improper handling of the closing of an untrusted signin confirmation dialog in OneClickSigninBubbleView::WindowClosing, allowing an attacker to trigger a sync with an arbi...

CVE-2013-6643

The OneClickSigninBubbleView::WindowClosing function in browser/ui/views/sync/oneclicksigninbubbleview.cc in Google Chrome before 32.0.1700.76 on Windows and before 32.0.1700.77 on Mac OS X and Linux allows attackers to trigger a sync with an arbitrary Google account by leveraging improper handli...

ButorWiki Cross Site Scripting

Exploit Title: ButorWiki Cross Site Scripting Date: 16.02.2012 Author: Sony Software Link: http://www.butor.com/ Software Version: 3.0.0 Web Browser : Mozilla Firefox Blog : http://st2tea.blogspot.com PoC: http://st2tea.blogspot.com/2012/02/butorwiki-cross-site-scripting.html...

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in Vanilla Forums before 2.0.17 allows remote attackers to inject arbitrary web script or HTML via the Target parameter in a /entry/signin action...

Unfixed XSS vulnerability at www.ice.com

Security researcher C1c4Tr1Z, has submitted on 29/04/2008 a cross-site-scripting XSS vulnerability affecting www.ice.com, which at the time of submission ranked 22152 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 20/06/2008. It is currently...

AllMyGuests <= 0.3.0 (AMG_serverpath) Remote Inclusion Vulnerabilities

No description provided by source. AllMyGuests 3.0 Remote File Inclusion Vulnerability Software: AllMyGuests Version: 3.0 Download: http://download.php-resource.net/AllMyGuests/AllMyGuests0.3.0.zip Found By: beks Bug In: /include/submit.inc.php /admin/index.php /include/cmsubmit.inc.php...