aus-dem-alltag.de Improper Access Control vulnerability OBB-3769293

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

partnervermittlung-frauen-aus-polen.de Improper Access Control vulnerability OBB-3768654

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

pferde-aus-spanien.de Cross Site Scripting vulnerability OBB-3651279

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

pferde-aus-spanien.de Cross Site Scripting vulnerability OBB-2796852

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

aus-zeiten-berlin.de Cross Site Scripting vulnerability OBB-2648469

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

finanzmakler-aus-dresden.de Cross Site Scripting vulnerability OBB-1428735

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

wir-aus-rain.de XSS vulnerability

Open Bug Bounty ID: OBB-691698 Description| Value ---|--- Affected Website:| wir-aus-rain.de Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Design/Logic Flaw

The Better Homes and Gardens Aus aka com.pacificmagazines.betterhomesandgardens application @7F0801B2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2014-7720

CVE-2014-7720 affects the Better Homes and Gardens Aus Android app (com.pacificmagazines.betterhomesandgardens). The vulnerability is that the app does not validate SSL X.509 certificates from servers, enabling potential man-in-the-middle attacks to spoof servers and exfiltrate sensitive data via...

CVE-2014-3265

Cross-site scripting XSS vulnerability in the Auto Update Server AUS web framework in Cisco Security Manager 4.2 and earlier allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCuo06900...

Cross site scripting

Cross-site scripting XSS vulnerability in the Auto Update Server AUS web framework in Cisco Security Manager 4.2 and earlier allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCuo06900...

CVE-2014-3265

Cross-site scripting XSS vulnerability in the Auto Update Server AUS web framework in Cisco Security Manager 4.2 and earlier allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCuo06900...

CVE-2014-3265

CVE-2014-3265 describes a cross-site scripting (XSS) vulnerability in the Auto Update Server (AUS) web framework used by Cisco Security Manager (CSM) 4.2 and earlier. The root cause is insufficient input validation of a parameter within the AUS web framework, enabling remote attackers to inject a...