558 matches found
CVE-2016-3114
Kallithea before 0.3.2 allows remote authenticated users to edit or delete open pull requests or delete comments by leveraging read access...
CVE-2016-3114
Kallithea before 0.3.2 allows remote authenticated users to edit or delete open pull requests or delete comments by leveraging read access...
Qualys Cloud Platform 2.26 New Features
This release of the Qualys Cloud Platform version 2.26 includes updates and new features for Cloud Agent, AssetView, Security Assessment Questionnaire and Web Application Scanning as follows: Highlights Cloud Agent Platform View Module Activation Job Status – adds a button in Agent Management tab...
Starbucks: Stored XSS in comments on https://www.starbucks.co.uk/blog/*
Hi, there are a lot of published blog post under https://www.starbucks.co.uk/blog/. You can find plenty of them using this google dork site:www.starbucks.co.uk inurl:blog/. Notice the comments functionality at the bottom at the page. When a comment is sent the following request is made: http POST...
CVE-2016-4861
The 1 order and 2 group methods in ZendDbSelect in the Zend Framework before 1.12.20 might allow remote attackers to conduct SQL injection attacks by leveraging failure to remove comments from an SQL statement before validation...
Sql injection
The 1 order and 2 group methods in ZendDbSelect in the Zend Framework before 1.12.20 might allow remote attackers to conduct SQL injection attacks by leveraging failure to remove comments from an SQL statement before validation...
Cisco Intrusion Prevention System Device Manager Information Disclosure Vulnerability
A vulnerability in the web-based management interface of the Cisco Intrusion Prevention System Device Manager IDM could allow an unauthenticated, remote attacker to view sensitive information stored in certain HTML comments. The vulnerability is due to improper masking of sensitive data in...
Service Desk mail handler create comments in other JIRA issues if subject have valid issues keys
h3. Summary Service Desk mail handler create comments in other JIRA issues if email subject have valid issues keys of issues from other JIRA Projects. h3. Environment Cloud h3. Steps to Reproduce Create a SD project Setup the mail handler Create another project and create an issue on it. Send an...
Multiple Cross-Site Scripting Vulnerabilities in b2evolution
b2evolution is a PHP and MySQL based blogging software developed by software developer FrancoisPlanque. A cross-site scripting vulnerability exists in the file type table of b2evolution versions prior to 6.8.3. The vulnerability can be exploited by remote attackers to inject arbitrary web script ...
CVE-2016-7570
Vulnerability: Drupal 8.x before 8.1.10 exposes a permissions check flaw where users with node-edit rights can alter the visibility of comments on arbitrary nodes. Root cause: improper verification of the Administer comments permission. Impact: authenticated remote attackers could manipulate comm...
openSUSE Security Update : mariadb (openSUSE-2016-1068)
This update for mariadb fixes the following issues : - CVE-2016-3477: Unspecified vulnerability in subcomponent parser bsc991616 - CVE-2016-3521: Unspecified vulnerability in subcomponent types bsc991616 - CVE-2016-3615: Unspecified vulnerability in subcomponent dml bsc991616 - CVE-2016-5440:...
WordPress Contus Video Comments Plugin - Remote File Upload
This plugin is prone to a remote file upload vulnerability, because any user can upload .jpg files to the WordPress installation. Solution Update the plugin...
Pornhub: [IDOR] Deleting other users comment
Hello, Normally you cannot delete comments if you post on someones stream and i have found a way to delete others comment. PoC: https://youtu.be/mxEE9vcxKA Let me know if you cannot reproduce it ! Thanks! Mikko...
Search API - Moderately Critical - Multiple Vulnerabilities - SA-CONTRIB-2016-022
This module enables you to build searches using a wide range of features, data sources and backends. Search index not updated by node access changes The module doesn't sufficiently re-index nodes when using the "Node access" or "Access check" data alterations and non-standard ways of changing nod...
Zendesk: Stored XSS in comments
Hello, Here are the steps to reproduce: 1 Go to any help articles or some place where you can comment 2 Type in the comment as: click this link 3 Now click on the text click this link on your comments and XSS is executed ! This is quite similar to 82725 but with a slight different payload...
redaxscript 2.5.0 - Multiple Vulnerabilities
Exploit for php platform in category web applications redaxscript 2.5.0 - Multiple Vulnerabilities Description The module filemanager allows for file uploads, and uses exifimagetype to check the validity of the file. By setting the first bytes of the uploaded file to that of a valid image type, a...
HackerOne: Minor Bug: Public un-compiled CSS with original sass, versioning, source map, comments, etc.
A stylesheet is available in a non-minified, non-compiled format. It includes sass, versioning, a source map, a style guide, comments, etc. see base64 encoded string at the very end of the document. https://hackerone.com/assets/application.css This alone is obviously not an exploit. However, it c...
Livefyre Comments 3 4.1.4 XSS
Every registered user can change livefyresiteid and livefyresitekey. File: livefyre-comments\src\admin\LivefyreAdmin.php function construct $lfcore $this-lfcore = $lfcore; $this-ext = $lfcore-ext; addaction 'adminmenu', array &$this, 'registeradminpage' ; addaction 'adminnotices', array &$this,...
WordPress <= 4.2 - Stored XSS
Confirmed vulnerable: WordPress 4.2, 4.1.2, 4.1.1, 3.9.3. Tested with MySQL versions 5.1.53 and 5.5.41. OverviewCurrent versions of WordPress are vulnerable to a stored XSS. An unauthenticated attacker can inject JavaScript in WordPress comments. The script is triggered when the comment is viewed...
Zendesk: Stored XSS in comments
Hi , I have found an XSS vulnerability in commenting on articles. Steps to reproduce: 1. Go to an article on your website for example: https://testingthatweb.zendesk.com/hc/en-us/articles/204094081 2. Type this in the comment box: Click here 3. after the comment is posted , you'll see your commen...