veloretro.ru Cross Site Scripting vulnerability OBB-2359843

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

ownCloud: owncloud.com: Account Compromise Through CSRF

@architaa, @vishnudfx, @konkakarthik and @hussain reported a CSRF vulnerability on the owncloud.com web page that may lead to an account take over. This issue has been mitigated meanwhile. To protect private information such as the reporters' email address this issue has been disclosed limitedly...