2 matches found
CVE-2018-20744
The CVE-2018-20744 entry concerns Olivier Poitrey’s Go CORS handler (versions ≤ 1.3.0). The root cause is that a wildcard CORS policy can be converted to reflect an arbitrary Origin header value, which conflicts with CORS security design and can lead to CORS misconfiguration. Impact described as ...
popmarkets.com XSS vulnerability
Open Bug Bounty ID: OBB-250039 Description| Value ---|--- Affected Website:| popmarkets.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...