38816 matches found
tarteaucitron.js has Regular Expression Denial of Service (ReDoS) vulnerability
Summary A potential Regular Expression Denial of Service ReDoS vulnerability was identified in tarteaucitron.js in the handling of the issuuid parameter. Details The issue was caused by the use of insufficiently constrained regular expressions applied to attacker-controlled input: if...
GHSA-Q5F6-QXM2-MCQM tarteaucitron.js has Regular Expression Denial of Service (ReDoS) vulnerability
Summary A potential Regular Expression Denial of Service ReDoS vulnerability was identified in tarteaucitron.js in the handling of the issuuid parameter. Details The issue was caused by the use of insufficiently constrained regular expressions applied to attacker-controlled input: if...
URLextractor - Information Gathering and Website Reconnaissance
Informationgathering & website reconnaissance Usage: ./extractor http://www.hackthissite.org/ Tips: Colorex: put colors to the ouput pip install colorex and use it like ./extractor http://www.hackthissite.org/ | colorex -g "INFO" -r "ALERT" Tldextract: is used by dnsenumeration function pip insta...
unishop.by XSS vulnerability
Vulnerable URL: https://unishop.by/search/?query=%3C/title%3E%3Csvg/onload=confirm/OPENBUGBOUNTY/%3E Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 137256 VIP website status:| No Coordinated Disclosure Timeline:...
planetkey.de XSS vulnerability
Vulnerable URL: https://www.planetkey.de/suche/?s=%22%2F%3E%27%3E%22%3EI%3Ci%3EI%3Csvg%2Fonload%3Dalert%28%2Fopenbugbounty%2F%29%3E Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 112859 VIP website status:| No...
qmery.com XSS vulnerability
Vulnerable URL: http://qmery.com/?s=" Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 216938 VIP website status:| No Coordinated Disclosure Timeline: Description| Value ---|--- Vulnerability submitted via Open Bu...
axiomtelecom.com XSS vulnerability
Vulnerable URL: https://www.axiomtelecom.com/search/'%3E%3Csvg/onload=alert'OPENBUGBOUNTY.ORG'%3E Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 53431 VIP website status:| No Coordinated Disclosure Timeline:...
tpd.sk XSS vulnerability
Vulnerable URL: https://www.tpd.sk/elektronika-a-spotrebice-c20073?page=2%22%3E%3Cimg%20src=1%20onerror=alert%22OPENBUGBOUNTY%22%3E.gif Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 98297 VIP website status:| N...
humo-gen.com XSS vulnerability
Vulnerable URL: http://www.humo-gen.com/humo-gen/birthdaylist.php/a7210%22%3E%3Cimg%20src%3da%20onerror%3dalert1%3E9ebde7bc1a6 Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 4650102 VIP website status:| No...
pizza.od.ua XSS vulnerability
Vulnerable URL:...
media.info XSS vulnerability
Vulnerable URL: https://media.info/search?s=%3C/script%3E%3Csvg%2Fonload=confirm%2FOPENBUGBOUNTY%2F%3E Details: Description| Value ---|--- Patched:| Yes, at 20.12.2017 Latest check for patch:| 20.12.2017 06:27 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 2465...
nicogachan.com XSS vulnerability
Vulnerable URL: http://nicogachan.com/search.php?query=%22%3E%3Csvg%3E%3Cscript%3E/%3C@/%3Eprompt/OPENBUGBOUNTY/%3C/script%3E Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 4178617 VIP website status:| No...
endlessvideo.com XSS vulnerability
Vulnerable URL: https://endlessvideo.com/watch?v=-tTurv6i6J0=%22%3E%3Csvg%3E%3Cscript%3E/%3C@/%3Eprompt/OPENBUGBOUNTY/%3C/script%3E= Details: Description| Value ---|--- Patched:| Yes, at 19.12.2017 Latest check for patch:| 19.12.2017 11:42 GMT Vulnerability type:| XSS Vulnerability status:|...
gofeminin.de XSS vulnerability
Vulnerable URL: https://www.gofeminin.de/reloaded/users/login Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 16784 VIP website status:| Yes Coordinated Disclosure Timeline: Description| Value ---|--- Vulnerabili...
brickseek.com XSS vulnerability
Vulnerable URL: https://brickseek.com/login/ Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 16588 VIP website status:| Yes Coordinated Disclosure Timeline: Description| Value ---|--- Vulnerability submitted via...
loyolahs.edu XSS vulnerability
Vulnerable URL: https://www.loyolahs.edu/?s=%22%3E%3C%2Fscript%3E%3Cimg+src%3Dx+onerror%3Dprompt%2FXSSPOSED%2F%3E Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 229233 VIP website status:| No Coordinated...
bb.iifree.com XSS vulnerability
Vulnerable URL: http://bb.iifree.com/index.asp?user=%27%22%3E%3Csvg/onload=confirm/OPENBUGBOUNTY/%3Ecctv=6 Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website status:| No...
myanmarbusiness-directory.com XSS vulnerability
Vulnerable URL: http://www.myanmarbusiness-directory.com/en/categories-index/search.html?searchword=" onfocus=promptdocument.domain autofocus alt="id=952=-alert1-=210=commtree=searchcat=1 Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicl...
bbt.co.jp XSS vulnerability
Vulnerable URL: http://www.bbt.co.jp/frame.php?url=javascript:alert/OPENBUGBOUNTY/ Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 836949 VIP website status:| No Coordinated Disclosure Timeline: Description| Valu...
suedkurier.de XSS vulnerability
Vulnerable URL: https://www.suedkurier.de/" Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 40103 VIP website status:| Yes Coordinated Disclosure Timeline: Description| Value ---|--- Vulnerability submitted via...