webos-forums.ru Open Redirect vulnerability

Open Bug Bounty ID: OBB-275847 Description| Value ---|--- Affected Website:| webos-forums.ru Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Open Redirect / CWE-601 CVSSv3 Score:| 3.4...

LG webOS Connect - Customized SSL, External URLs, SD-card access vulnerabilities

HackApp vulnerability scanner discovered that application LG webOS Connect published at the 'play' market has multiple vulnerabilities...

Symbiose Webos Cross Site Scripting / Path Disclosure

Exploit Title: Symbiose Webos - XSS / FPD Date: 04 July 2014 Exploit Author: G4eL Download: http://symbiose.fr.cr/ Demo: http://webos.symbiose.fr.cr/ Tested on: Ubuntu http://domain/usr/?path=/usr/&type=1alert123 Results : Fatal error: Class 'lib\ctrl\rawDataCall\1alert123Controller' not found in...

Palm WebOS 1.0/1.1 Email Arbitrary Script Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/36592/info Palm WebOS is prone to an arbitrary-script-injection vulnerability because the integrated email application fails to properly sanitize user-supplied input. An attacker can exploit this issue to execute arbitrar...

Palm WebOS 1.0/1.1 'LunaSysMgr' Service Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/36659/info Palm WebOS is prone to a remote denial-of-service vulnerability because it fails to properly validate user-supplied data. Attackers can leverage this issue to cause an affected device to reboot. Given the natur...

Palm Pre WebOS <= 1.1 - Remote File Access Vulnerability

No description provided by source. I. Description The Palm Pre WebOS =1.1 suffers from a JavaScript injection attack that allows a malicious attacker to access any file on the mobile device. Palm has patched this vulnerability and all users are recommended to upgrade to WebOS version 1.2+. Palm...

Alteon AceDirector Half-Closed HTTP Request IP Address Revealing Vulnerabililty

No description provided by source. source: http://www.securityfocus.com/bid/3964/info Alteon ACEdirector is a hardware solution distributed by Nortel Networks. ACEdirector runs the Nortel WebOS operating system. It is possible to retrieve the real IP addresses of webservers that are managed by an...

HP Launches Beta Release Of Open WebOS

Months after Hewlett-Packard originally announced the open-source version of WebOS, the beta version of the platform is on its way out the door. Friday's release includes two environments for developers. The first is the desktop build, which is boasted to provide "the ideal development environmen...

CVE-2009-5097

Palm Pre WebOS 1.1 and earlier processes JavaScript in email messages, which allows remote attackers to execute arbitrary JavaScript, as demonstrated by reading PalmDatabase.db3...

CVE-2009-5098

The LunaSysMgr process in Palm Pre WebOS 1.1 and earlier, when not viewing web pages in landscape mode, allows remote attackers to cause a denial of service crash via a web page containing a long string following a refresh tag, which triggers a floating point exception...

CVE-2009-5098

The LunaSysMgr process in Palm Pre WebOS 1.1 and earlier, when not viewing web pages in landscape mode, allows remote attackers to cause a denial of service crash via a web page containing a long string following a refresh tag, which triggers a floating point exception...

CVE-2009-5097

Palm Pre WebOS 1.1 and earlier processes JavaScript in email messages, which allows remote attackers to execute arbitrary JavaScript, as demonstrated by reading PalmDatabase.db3...

Code injection

The LunaSysMgr process in Palm Pre WebOS 1.1 and earlier, when not viewing web pages in landscape mode, allows remote attackers to cause a denial of service crash via a web page containing a long string following a refresh tag, which triggers a floating point exception...

Code injection

Palm Pre WebOS 1.1 and earlier processes JavaScript in email messages, which allows remote attackers to execute arbitrary JavaScript, as demonstrated by reading PalmDatabase.db3...

CVE-2009-5097

Technical details (affected software versions, root cause, exploitation status, and fixes) are not provided in the connected documents; monitor for updates.

CVE-2009-5098

The LunaSysMgr process in Palm Pre WebOS 1.1 and earlier, when not viewing web pages in landscape mode, allows remote attackers to cause a denial of service crash via a web page containing a long string following a refresh tag, which triggers a floating point exception...

CVE-2009-5098

The CVE-2009-5098 issue affects Palm Pre WebOS 1.1 and earlier, specifically the LunaSysMgr process. A web page containing a long string after a refresh tag can trigger a floating point exception when the device is not in landscape mode, allowing remote attackers to cause a denial of service (cra...

CVE-2009-5097

Palm Pre WebOS 1.1 and earlier processes JavaScript in email messages, which allows remote attackers to execute arbitrary JavaScript, as demonstrated by reading PalmDatabase.db3...

HP Palm WebOS crossite scripting

Crossite scripting in Contacts and Calendar applications...

[security bulletin] HPSBGN02696 SSRT100590 rev.1 - HP webOS Calendar Application, Remote Execution of Arbitrary Code

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c02945437 Version: 1 HPSBGN02696 SSRT100590 rev.1 - HP webOS Calendar Application, Remote Execution of Arbitrary Code NOTICE: The information in this Security Bulletin should be acted upon as soon...