bene-inox.com Cross Site Scripting vulnerability OBB-3938906

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

bene-inox.com Cross Site Scripting vulnerability OBB-3851144

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

bene-fit.app Cross Site Scripting vulnerability OBB-3342575

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

CVE-2014-7439

The CVE-2014-7439 entry concerns the Android app bene+ odmeny a slevy (cz.gemoney.bene.android) v1.2.3, which does not verify X.509 certificates when connecting to SSL servers. This permits MITM攻击 where an attacker can spoof servers and access sensitive information via a crafted certificate. The ...