3 matches found
imbpa.com Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1137312 Security Researcher kun-fly Helped patch 668 vulnerabilities Received 7 Coordinated Disclosure badges Received 43 recommendations , a holder of 7 badges for responsible and coordinated disclosure, found a security vulnerability affecting imbpa.com website and its...
CVE-2018-3778
Affected software: aedes (MQTT broker) prior to version 0.35.1. Root cause: improper authorization allows publishing a Last Will (LWT) in a channel when a client is not authorized. Impact: potential unauthorized LWT publication in a channel; explicit exploitation details are not provided in the d...
CVE-2018-3778
Improper authorization in aedes version 0.35.0 will publish a LWT in a channel when a client is not authorized...