cashback.ganhedevolta.com.br Cross Site Scripting vulnerability OBB-3887156

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Google Pay accidentally handed out free money, bug now fixed

Days ago, several Google Pay users in the US received some unexpected cashback from Google, congratulating them "for dogfooding the Google Pay Remittance experience". Confused and a tad happy, some looked to Twitter for answers, while others aired their experiences on the /r/googlepay/ Reddit pag...

openSUSE Security Update : opera (openSUSE-2021-413)

This update for opera fixes the following issues : - Update to version 74.0.3911.203 - CHR-8324 Update chromium on desktop-stable-88-3911 to 88.0.4324.182boo1182358 - DNA-90762 Replace Dont show again with Discard - DNA-90974 Crash at opera::PersistentRecentlyClosedWindows::GetEntryTypeSes sionID...

cashback-hikaku.jp Cross Site Scripting vulnerability OBB-1353953

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

cashback.si.bosch-home.com Improper Access Control vulnerability

Open Bug Bounty ID: OBB-1007501 Security Researcher geeknik Helped patch 8938 vulnerabilities Received 8 Coordinated Disclosure badges Received 21 recommendations , a holder of 8 badges for responsible and coordinated disclosure, found a security vulnerability affecting cashback.si.bosch-home.com...

Curve: Business Logic Flaw - A non premium user can change/update retailers to get cashback on all the retailers associated with Curve

Hi, While testing your android application I've found a business logic flaw by using which a non premium user can update/change the retailers when ever and what ever retailers he wants to. Curve application has a functionality called "Earn curve cash". A non premium user can select only 3 retaile...

iGraal - Codes promo&Cashback - Customized SSL, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application iGraal - Codes promo&Cashback published at the 'play' market has multiple vulnerabilities...

seeleyinternational.com Open Redirect vulnerability

Vulnerable URL: https://www.seeleyinternational.com/custom/cashbacks/session.php?redirect=https://www.xssposed.org/ Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank| 1270810...