PT-2026-46348

That number got my attention. I've cleaned up enough incidents to know what usually happens when a vulnerability becomes public. Attackers don't wait. Right now there are 145 WordPress plugins/themes with publicly disclosed vulnerabilities that still have no available fix. If you're running any o...

PT-2026-46365

That number got my attention. I've cleaned up enough incidents to know what usually happens when a vulnerability becomes public. Attackers don't wait. Right now there are 145 WordPress plugins/themes with publicly disclosed vulnerabilities that still have no available fix. If you're running any o...

viajaralondres.com Cross Site Scripting vulnerability OBB-3588348

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

nominalia.com XSS vulnerability

Open Bug Bounty ID: OBB-620871 Description| Value ---|--- Affected Website:| nominalia.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

aswd.co.za XSS vulnerability

Open Bug Bounty ID: OBB-469110 Description| Value ---|--- Affected Website:| aswd.co.za Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat Sheet...

CS-Cart 4.3.10 - XML External Entity Injection Vulnerability

Exploit for php platform in category web applications Software : CS-Cart Ahmed sultan 0x4148 "; echo rawurlencodebase64encode$xml; ? change YOURHOST to your server address , use the output in the following POST request Action - HOST/cs-cart/index.php?dispatch=twigmo.post Data -...

google.co.uk Open Redirect vulnerability

Vulnerable URL: https://www.google.co.uk/url?q=https://myaccount.google.com/signin?continue=https://goo.gl/bFrRLW Details: Description| Value ---|--- Patched:| Yes, at 12.11.2016 Latest check for patch:| 12.11.2016 08:55 GMT Vulnerability type:| Open Redirect Vulnerability status:| Publicly...

catalog.umf.maine.edu XSS vulnerability

Vulnerable URL: http://catalog.umf.maine.edu/show.php?version=2015-2016%201%22--%3E%3C/script%3E%3Csvg/onload=%27;alert%28/OPENBUGBOUNTY/%29;%27%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclos...

harwintonsports.com Open Redirect vulnerability

Vulnerable URL: http://harwintonsports.com/Goto.asp?URL=https://www.xssposed.org/=19303 Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated Google...

beepbeep.ie XSS vulnerability

Open Bug Bounty ID: OBB-47548 Description| Value ---|--- Affected Website:| beepbeep.ie Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat Sheet...

To bypass PHPCMS patch to continue injection-vulnerability warning-the black bar safety net

Vulnerability author: I want to get a shell Submission time: 2013-01-16 Disclosure time: 2013-01-21 Vulnerability type: SQL injection vulnerability Brief description: Inadvertently looked phpcms patch, just want to spit slot. In addition PHPCMS released a patch why not in the forum thank tick it,...