AVTECH video surveillance equipment authentication bypass and other vulnerabilities

Authentication bypass vulnerability There are two ways to achieve authentication bypass: The first one is. cab way, the cab file format is a video player plug-in, stored in the web root directory, it may need to verify directly be accessed and downloaded, and the device end only through the strst...

Coinbase: Authentication Issue

Hello there, I noticed while creating Recurring payment while 2FA is enabled it asks a user to enter verification code. So when someone confirm the Reccuring payment a request is sent to : POST /recurringpayments/58087a3d6861ee015644fc48/confirm HTTP/1.1 Host: beta.coinbase.com User-Agent:...

OLX: Bypassing Phone Verification For Posting AD On OLX

Overview In computer networks, rate limiting is used to control the rate of traffic sent or received by a network interface controller. It can be induced by the network protocol stack of the sender due to a received ECN-marked packet and also by the network scheduler of any router along the way...

Web Security testing common logic vulnerability analysis（combat article-the vulnerability warning-the black bar safety net

Logic vulnerabilities mining has always been Safety tested in the“timeless”topic. Compared toSQL injection, withXSSthe vulnerability of traditional security holes, and now the attacker is more inclined to use the business logic layer of the application security issues, such issues tend to harm th...

Mobile payment software is now vulnerabilities hackers use Siri to steal your money-vulnerability warning-the black bar safety net

! Venmo's security holes is by the Salesforce security engineer Martin Vigo found, and this vulnerability using the“medium”is very special, Siri in this process is very unfortunately become a hackers attack our tools. The hackers have to do things very simple, he just need to ask Siri to send a...

Trello: Verification Code Reused For activating 2FA

There is Authentication Problem with the Verification Code for Activating 2FA ! Description: Verification Code is getting reused for multiple times aven on every activation 2FA action there you recieve saperate an new Verification Code for Activating 2FA ! Proof Video thanks...

ChinaSoft Unified Terminal Security Management System Client Arbitrary Uninstallation Vulnerability

ChinaSoft Unified Terminal Security Management System is a comprehensive system management software that can guarantee system security. With the loophole of arbitrary uninstallation of the client of ChinaSoft Unified Terminal Security Management System, ordinary users who do not have administrato...

devise-two-factor 1.1.0 and earlier vulnerable to replay attacks

A OTP replay vulnerability in devise-two-factor 1.1.0 and earlier allows local attackers to shoulder-surf a user's TOTP verification code and use it to login after the user has authenticated. By not "burning" a previously used TOTP, devise-two-factor allows a narrow window of opportunity aka the...

iSMCloud平台逻辑缺陷重置任意用户密码(官方账户测试/秒改)

简要描述： 绕过验证码秒改用户密码！ 详细说明： 0x1:先用一个用户获取官方的邮箱。 [email protected] 就用这个用户来证明漏洞。 修改这个用户之前，我们先用自己的用户走一边正确的流程，为的就是获取正确的响应码。 获取正确的验证码，响应包返回如下。 "success":true,"msg":"resetpassword.jsp","errors":null,"resultData":null 漏洞证明： 0x2： 随意填入6位的验证码，无需获取验证码，下一步此时截断响应包，修改为正确的响应包。 跳到修改密码的界面，修改密码为wooyun123. 0x3:登陆验证。...

Automattic: Verification code issues for Two-Step Authentication

Hi there, I noticed two issues regarding the verification code that is sent to the phone as Two-Step Authentication for Wordpress accounts. I found out that verification code sent as SMS while enabling Two-Step Authentication can be reused infinitely for login. Issue1 The application does not...

Caught on the web of any user of the password reset vulnerability-vulnerability warning-the black bar safety net

Phone reset password password reset operation is not associated with a specific phone number, the lead can be reset to any phone registration account password. 1. The following url returns a result, you can traverse all the mobile phones registered account: http://api1.fun.tv/ajax/getmobilevcode/...

Password retrieve logic vulnerability summary-vulnerability warning-the black bar safety net

0x00 background description Please note these two articles: Password retrieve function there may be a problem Password retrieve function there may be issues supplemented From the above two documents the past six months, recently finishing a password to get back to the mind map, open the collectio...

A common Site Management System any user login/SQL injection/GetShell vulnerabilities source code analysis-vulnerability warning-the black bar safety net

Brief description: This system is not open source, most of the universities in use, turn the source off at the next Detailed description: 0x00 General case: code area Manufacturer: Rio Tinto tech Official website: http://www.ltpower.net/ The main is to do the educational products of the...

phpwind can bypass the verification code to continue the violent crack users, demo demo-a vulnerability warning-the black bar safety net

First came to phpwind official website to see, found phpwind has been updated to 9. 0, website is the latest program ! 1. png Then came the landing place can be seen, the site has CAPTCHA restrictions, sank half） ! 2. png Then pick an account login see, the input error will find that there are th...

Dropbear < 0.43 DSS Verification Code Vulnerability

Dropbear is prone to a DSS verification code vulnerability. SPDX-FileCopyrightText: 2014 SCHUTZWERK GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later CPE =...

QIWI: Code for registration of qiwi account is not coming even after a long interval of time for Indian mobile number

Hi, team I noticed that while registering qiwi account with Indian mobile number, the verfication code is not coming. I think somewhere there is an error in your system. Vulnerable url : qiwi.com After entering Indian mobile...

CVE-2013-2598

app/aboot/aboot.c in the Little Kernel LK bootloader, as distributed with Qualcomm Innovation Center QuIC Android contributions for MSM devices and other products, allows attackers to overwrite signature-verification code via crafted boot-image load-destination header values that specify memory...

Memory corruption

app/aboot/aboot.c in the Little Kernel LK bootloader, as distributed with Qualcomm Innovation Center QuIC Android contributions for MSM devices and other products, allows attackers to overwrite signature-verification code via crafted boot-image load-destination header values that specify memory...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in vcc.js.php in the Verification Code for Comments plugin 2.1.0 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 vp, 2 vs, 3 l, 4 vu, or 5 vm parameter...

CVE-2014-4565

The CVE-2014-4565 issue affects the WordPress plugin Verification Code for Comments (vcc.js.php) version 2.1.0 and earlier. The vulnerability is a multiple parameter reflected XSS in vcc.js.php, exploitable via the five parameters (vp, vs, l, vu, vm), allowing an attacker to inject arbitrary scri...