Lucene search
K

4 matches found

Hacker One
Hacker One
added 2020/11/20 2:6 p.m.39 views

Mail.ru: DOM XSS on https://biz.mail.ru/domains/goto/mail/ via parameter pollution

DOM based XSS in biz.mail.ru...

0.9AI score
Exploits0
Hacker One
Hacker One
added 2017/11/14 6:54 a.m.23 views

Mail.ru: CSRF на biz.mail.ru

Здравствуйте, Я обнаружил CSRF на biz.mail.ru PoC: система думает что мы хотели добавить эти домены в свой аккаунт через час мы получим майли: "Нужна помощь с подтверждением домена .com?" F239336 Благодарю за внимание. С уважением, Джейхун Джафаров c37hun...

0.6AI score
Exploits0
Hacker One
Hacker One
added 2017/09/14 7:0 a.m.29 views

Mail.ru: XSS in biz.mail.ru/error

Hello again! I've found an open redirect issue and possibility to bypass your filters to add direct links in tag Domain, site, application: biz.mail.ru/error Testing environment: latest Chrome Steps to reproduce: 1 go to https://biz.mail.ru/error/500/?from=%20https://www.google.com 2 click Refres...

7.2AI score
Exploits0
Hacker One
Hacker One
added 2017/09/12 3:45 p.m.38 views

Mail.ru: Stored XSS and html injection in biz.mail.ru

Domain, site, application: biz.mail.ru Testing environment: Latest chrome Steps to reproduce 1 go to biz.mail.ru, login 2 go to "My company" 3 create a department named as "alert 4 add an employee in that department 5 create a new subdepartment 6 add the employee from step 4 in our subdepartment...

6.8AI score
Exploits0
Rows per page
Query Builder