36 matches found
Everest Ransomware Group Claims Theft of Over 1TB of Chrysler Data
On December 25, while much of the world was observing Christmas, the Everest ransomware group published a new…...
EUVD-2015-5564
Malware in sbrugna...
Jeep and Dodge Parent Company Stellantis Confirms Customer Data Breach
Stellantis, parent of Jeep, Chrysler, Dodge and FIAT, confirms data breach through third-party vendor. Contact info exposed, financial data not affected...
login.chrysler.com Cross Site Scripting vulnerability OBB-3860823
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
login.chrysler.com Cross Site Scripting vulnerability OBB-3424730
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
greenvillechrysler.com Cross Site Scripting vulnerability OBB-3260522
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
login.chrysler.com Cross Site Scripting vulnerability OBB-3213718
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
epay.extra.chrysler.com Cross Site Scripting vulnerability OBB-3049986
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
chrysler.co.il Cross Site Scripting vulnerability OBB-2892416
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
autokostencheck.de XSS vulnerability
Open Bug Bounty ID: OBB-552548 Description| Value ---|--- Affected Website:| autokostencheck.de Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
www-origin.driveuconus.chrysler.com Open Redirect vulnerability
Vulnerable URL: http://www-origin.driveuconus.chrysler.com/exitpage.html?url=https://openbugbounty.org Details: Description| Value ---|--- Patched:| Verification in progress Latest check for patch:| 14.01.2018 Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank...
carlgregorychryslerdodgejeepofalbany.com XSS vulnerability
Open Bug Bounty ID: OBB-221502 Description| Value ---|--- Affected Website:| carlgregorychryslerdodgejeepofalbany.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3...
chapmanchryslerjeepnevada.com XSS vulnerability
Vulnerable URL: http://chapmanchryslerjeepnevada.com/all-inventory/index.htm?listingConfigId=AUTO-new,AUTO-used"'--!confirmOPENBUGBOUNTY...
kayserchryslercenter.com XSS vulnerability
Vulnerable URL: http://kayserchryslercenter.com/all-inventory/index.htm?listingConfigId=AUTO-new,AUTO-used"'--!confirmOPENBUGBOUNTY...
varsitychrysler.com XSS vulnerability
Vulnerable URL: http://www.varsitychrysler.com/new-inventory/index.htm?reset=%22%3E%3Cimg%20src=x%20onerror=prompt%28/OPENBUGBOUNTY/%29%3E Details: Description| Value ---|--- Patched:| Yes, at 28.07.2017 Latest check for patch:| 28.07.2017 13:39 GMT Vulnerability type:| XSS Vulnerability status:|...
FCA US LLC UconnectPhone - XFS Attack & XSS Vulnerability
Document Title: =============== FCA US LLC UconnectPhone - XFS Attack & XSS Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2020 Release Date: ============= 2016-12-15 Vulnerability Laboratory ID VL-ID: ====================================...
chrysler.com XSS vulnerability
Vulnerable URL: http://www.chrysler.com/exitpage/index.html?tname=facebooklink=javascript:alert'OPENBUGBOUNTY' Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 20635 VIP website...
Hackers to implement remote control of Model S car Tesla emergency repair software vulnerabilities-vulnerability warning-the black bar safety net
Beijing Time 9 on 2 1 September morning news, Tesla released this week, the electric car software system security patches. Earlier, the Chinese information security researcher found a Tesla car software vulnerabilities. Through these vulnerabilities, hackers can The Model S car to initiate a remo...
Tesla Fixes 'Critical' Remote Hack Vulnerability
Several models of the Tesla S cars were hacked by researchers who were able to abruptly stop the car in its tracks, pop open the trunk while the car was being driven, and remotely turn on and off the windshield wipers. The hacks demonstrated by China’s Keen Security Lab, a division of Tencent, we...
On Pokemon and Privacy, Riffle, the Fiat Chrysler Bug Bounty Program, and More
Mike Mimoso and Chris Brook discuss the news of the week, including privacy and Pokemon GO, a new MIT anonymity system, the Fiat Chrysler bug bounty program, and a patched printer spooler vulnerability. Download: ThreatpostNewsWrapJuly152016.mp3 Music by Chris Gonsalves...