3 matches found
ohmynews.com Cross Site Scripting vulnerability OBB-2135653
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
hotelastoria.cz Cross Site Scripting vulnerability
Security Researcher CityBoy Helped patch 87 vulnerabilities Received 3 Coordinated Disclosure badges Received 1 recommendations , a holder of 3 badges for responsible and coordinated disclosure, found a security vulnerability affecting hotelastoria.cz website and its users. Following coordinated...
CVE-2017-9427
CVE-2017-9427 is a SQL injection vulnerability in BigTree CMS up to version 4.2.18. The flaw allows remote authenticated users to execute arbitrary SQL commands via core/admin/modules/developer/modules/designer/form-create.php, with the injected table name being crafted at admin/developer/modules...