34 matches found
EUVD-2017-3316
Malware in sbrugna...
EUVD-2002-0098
Malware in sbrugna...
Boozt Fashion AB: Users Unable to login using Gmail/Facebook on https://boozt-stage1.booztx.com/login
Hi Team, when i try to login in this subdomainhttps://boozt-stage1.booztx.com/login using gmail or facebook,the login form does not redirect me to gmail/facebook,it is giving the error message since it is blacklisted by the server. Steps to Reproduce: 1 Goto https://boozt-stage1.booztx.com/login ...
Boozt Fashion AB: Bruteforce Unlimited number of password attempts
Hi team, This is my first ever report. So, thank you for your patience! URL: https://www.boozt.com/login Browser: Mozilla Firefox 55.0.2 64-bit on Ubuntu Tool: Burp Intruder Boozt account created for testing purposes only. I noticed that on your login page, an attacker can Brute force a login...
Boozt Fashion AB: booztfashion.com URL should HTTPS
hi team .. l click to Investor Relations on http://www.boozt.com/ outgoing links not use HTTPS please fix soon This is just for the awareness to use HTTPS everywhere, even for outgoing links - where it's possible. Treat this report with some salt, not as in hashes. Navigate to: http://www.boozt.c...
Boozt Fashion AB: [www.boozt.com] - Authentication bypass
Description I have found a flaw in the authentication process when accessing the website by visiting an unsubscribe link. PoC 1. Visit http://click.email.boozt.com/?qs=723df61c937e4dbf9e378d2157f7907baa95fa00699f2b4d13e192b1d14ed67323d5c7a75c6f801baf1e68c2beabbc43d574caeb9b6f8c085971631d636b3cda ...
Boozt Fashion application for Android information disclosure vulnerability
Boozt Fashion application for Android is a mobile application for online shopping based on Android platform by Boozt Sweden. A security vulnerability exists in the Boozt Fashion application for Android prior to version 2.3.4. A remote attacker can exploit the vulnerability to read login credentia...
CVE-2017-11706
The Boozt Fashion application before 2.3.4 for Android allows remote attackers to read login credentials by sniffing the network and leveraging the lack of SSL. NOTE: the vendor response, before the application was changed to enable SSL logins, was "At the moment that is an accepted risk. We only...
Design/Logic Flaw
The Boozt Fashion application before 2.3.4 for Android allows remote attackers to read login credentials by sniffing the network and leveraging the lack of SSL. NOTE: the vendor response, before the application was changed to enable SSL logins, was "At the moment that is an accepted risk. We only...
CVE-2017-11706
The Boozt Fashion application before 2.3.4 for Android allows remote attackers to read login credentials by sniffing the network and leveraging the lack of SSL. NOTE: the vendor response, before the application was changed to enable SSL logins, was "At the moment that is an accepted risk. We only...
CVE-2017-11706
The Boozt Fashion application before 2.3.4 for Android allows remote attackers to read login credentials by sniffing the network and leveraging the lack of SSL. NOTE: the vendor response, before the application was changed to enable SSL logins, was "At the moment that is an accepted risk. We only...
CVE-2017-11706
The CVE concerns the Boozt Fashion Android app prior to version 2.3.4. A remote attacker could read login credentials by sniffing network traffic due to the absence of SSL on login, as described in multiple sources. The vulnerability is tied to insecure credential transmission rather than a clien...
Boozt Fashion AB: Password reset token issue
Hi Team, Step to Repro - Request for password reset link. - Go to email and click on password reset link https://www.boozt.com/eu/en/customer/reset-password/c55ae0b6e00e883238d81e9a5a5d9ff1 - Now remove the token and use the link https://www.boozt.com/eu/en/customer/reset-password Observe that ab...
Boozt Fashion AB: Application code is not obfuscated -- OWASP M9 (2016)
Description : Boost android app is not obfuscated which lead to view the source code of the app. Impact : Attackers can steal code and reuse it or sell it to create new application or create a malicious fake application based on the initial one. POC : Step 1 : First, I did the basic reverse...
Boozt Fashion AB: Email spoofing at booztlet.com
Hello : This There is an Email Spoofing Vulnerability. Steps to reproduce: 1 Go to http://emkei.cz/ 2 Fill "From Email" field to [email protected] or any other booztlet email. 3 Fill the victim's address your address to "TO" field and fill in other details as you wish. You will receive email fro...
Boozt Fashion AB: Bypass email validity in newsletter field
Hi, I think i've discovered a little vulnerability on your website i don't know if she is outside the bug bounty program. In the newsletter field, the incorrect email addresses for example with special characters it's not accpeted. But with a specific HTTP request it's possible to bypass this...
Boozt Fashion AB: ADB Backup is enabled within AndroidManifest
ADB Backup is enabled for this app. ADB Backup feature is a good tool for backing up all of your files. If it's enabled, malicious users who have your phone can copy all of the sensitive data for this app in your phone. Requirement: Unlock phone's screen; Enable the developer mode. Sensitive data...
Boozt Fashion AB: Http header injection
Researcher reported a Host injection vulnerability which caused redirect to happen to unwanted hostname...
Boozt Fashion AB: Potential Subdomain Takeover Possible
Issue Description The researcher identified that the affected url points to sendgrid.net, via a DNS CNAME record. As a result of this an attacker could potentially initate a subdomain take over by registering the subdomain sendgrid.boozt.com on sendgrid and consiquently leverage this for further...
Boozt Fashion AB: Android app does not use SSL for login
We tested the Android app, v2.0.2 To replicate: Install the app, and run it until you reach the login screen. Install PacketCapture: https://play.google.com/store/apps/details?id=app.greyshirts.sslcapture Go to PacketCapture, go through setup, SKIP the SSL certificate install process Activate...