15 matches found
EUVD-2014-5464
Malware in sbrugna...
MAL-2024-9136 Malicious code in buy-sell-opensea-sdk-demo (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 387f6a252dc97ef83ae3456d6a7d81fa5f49202e6cd416597e3d07d7317ae014 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Carbiz Buy Sell Car Marketplace Script 1.2.0 Insecure Settings
====================================================================================================================================== | Title : Carbiz - Buy Sell Car Marketplace Script V 1.2.0 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro /...
Upgraded Q -> 2 from #215 [1683053585771]
Judge has assessed an item in Issue 215 as 2 risk. The relevant finding follows: QA10 Both EthRouterbuy and EthRoutersell do not check whether recipient == address0, as a result, they might send royalty fees to the zero address - loss of funds. --- The text was updated successfully, but these...
tx-lubbock.countybuyselltrade.com Cross Site Scripting vulnerability OBB-3124096
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Tradebox CryptoCurrency - symbol SQL Injection Vulnerability
Exploit for php platform in category web applications Title: Tradebox - CryptoCurrency Buy Sell and Trading Exploit Author: Abdullah Çelebi Vendor Homepage: https://www.bdtask.com Software Link: tradebox.bdtask.com/demo-v5.3/ Version: 5.4 Category: Webapps Tested on: WAMPP @Win Software...
Tradebox CryptoCurrency - symbol SQL Injection
Tradebox CryptoCurrency - symbol SQL Injection Title: Tradebox - CryptoCurrency Buy Sell and Trading Date: 04.04.2019 Exploit Author: Abdullah Çelebi Vendor Homepage: https://www.bdtask.com Software Link: tradebox.bdtask.com/demo-v5.3/ Version: 5.4 Category: Webapps Tested on: WAMPP @Win Software...
Tradebox CryptoCurrency - 'symbol' SQL Injection
Title: Tradebox - CryptoCurrency Buy Sell and Trading Date: 04.04.2019 Exploit Author: Abdullah Çelebi Vendor Homepage: https://www.bdtask.com Software Link: tradebox.bdtask.com/demo-v5.3/ Version: 5.4 Category: Webapps Tested on: WAMPP @Win Software description: Tradebox – CryptoCurrency Buy Sel...
Property Listing Script - 'propid' Blind SQL Injection
Exploit Title: Property Listing Script – Time-Based Blind Injection Date: 02.02.2017 Vendor Homepage: http://phprealestatescript.org/ Software Link: http://phprealestatescript.org/property-listing-script.html Exploit Author: Kaan KAMIS Contact: iletisimatk2andotcom Website: http://k2an.com...
MC buy and sell cars SQL Injection Vulnerability
MC buy and sell cars is an application script that deals with buying and selling cars. A SQL injection vulnerability exists in MC buy and sell cars. An attacker can exploit the vulnerability to obtain sensitive data...
Wish Local - Buy & Sell - Customized SSL, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Wish Local - Buy & Sell published at the 'play' market has multiple vulnerabilities...
CVE-2014-5577
The AVON Buy & Sell aka com.AVONBeautyntheRep application 0.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Information disclosure
The AVON Buy & Sell aka com.AVONBeautyntheRep application 0.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-5577
AVON Buy & Sell (com.AVONBeautyntheRep) Android app version 0.3 is affected by an SSL certificate validation flaw: it does not verify X.509 server certificates, enabling MITM with crafted certs. Root cause: missing/improper SSL certificate validation in the app’s network stack. CVSSv2 base score ...
CVE-2014-5577
The AVON Buy & Sell aka com.AVONBeautyntheRep application 0.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...