22 matches found
EUVD-2014-5464
Malware in sbrugna...
avon.com.sv Cross Site Scripting vulnerability OBB-3868124
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
avon.com.pa Cross Site Scripting vulnerability OBB-3867434
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
avon-oh.findstoragefast.com Cross Site Scripting vulnerability OBB-3853433
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
ba.avon-brochure.com Open Redirect vulnerability OBB-3143946
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
avon-brand.com Cross Site Scripting vulnerability OBB-3036958
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
bookings.avonvalley.co.uk Cross Site Scripting vulnerability OBB-2284712
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
avon-bonus.ru Cross Site Scripting vulnerability OBB-1325892
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
Cosmetic giant Natura leaks data again; this time 19 million Avon records
By Deeba Ahmed Avon Products, Inc. is owned Brazil's Natura & Co. which itself... This is a post from HackRead.com Read the original post: Cosmetic giant Natura leaks data again; this time 19 million Avon records...
avon.uk.com Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1152208 Security Researcher 4NCURZE Helped patch 1496 vulnerabilities Received 7 Coordinated Disclosure badges Received 12 recommendations , a holder of 7 badges for responsible and coordinated disclosure, found a security vulnerability affecting avon.uk.com website and it...
avon.com.sv XSS vulnerability
Open Bug Bounty ID: OBB-717279 Description| Value ---|--- Affected Website:| avon.com.sv Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| hidden unti...
avon-beauty.ro XSS vulnerability
Open Bug Bounty ID: OBB-602725 Description| Value ---|--- Affected Website:| avon-beauty.ro Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
media.avoncompany.com XSS vulnerability
Open Bug Bounty ID: OBB-577496 Description| Value ---|--- Affected Website:| media.avoncompany.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
avon.ca XSS vulnerability
Open Bug Bounty ID: OBB-565193 Description| Value ---|--- Affected Website:| avon.ca Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
link.shop.avon.com Open Redirect vulnerability
Open Bug Bounty ID: OBB-355603 Description| Value ---|--- Affected Website:| link.shop.avon.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Open Redirect / CWE-601 CVSSv3 Score:| 3.4...
motorradreifen.de XSS vulnerability
Vulnerable URL: http://motorradreifen.de/profilbild.php?hersteller=Avon=1"...
CVE-2014-5577
The AVON Buy & Sell aka com.AVONBeautyntheRep application 0.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Information disclosure
The AVON Buy & Sell aka com.AVONBeautyntheRep application 0.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-5577
The AVON Buy & Sell aka com.AVONBeautyntheRep application 0.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-5577
AVON Buy & Sell (com.AVONBeautyntheRep) Android app version 0.3 is affected by an SSL certificate validation flaw: it does not verify X.509 server certificates, enabling MITM with crafted certs. Root cause: missing/improper SSL certificate validation in the app’s network stack. CVSSv2 base score ...