2 matches found
cfcc.org.cn Cross Site Scripting vulnerability OBB-2536113
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
CVE-2017-16108
CVE-2017-16108 concerns the gaoxiaotingtingting HTTP server (Node.js module). The vulnerability is a directory traversal flaw that lets attackers access the filesystem by requesting URLs containing ../ (examples show traversal to parts like /../../etc/passwd). Public sources across multiple feeds...