40 matches found
ea-boyerlab-morphosource-01.oit.duke.edu Cross Site Scripting vulnerability OBB-3878987
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
courses.cs.duke.edu Cross Site Scripting vulnerability OBB-3855095
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
people.duke.edu Cross Site Scripting vulnerability OBB-3842895
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
repository.duke.edu Cross Site Scripting vulnerability OBB-3809897
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
carlyleletters.dukeupress.edu Cross Site Scripting vulnerability OBB-3655440
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
cgi.cs.duke.edu Cross Site Scripting vulnerability OBB-3269612
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
How a senior product manager is leading the passwordless movement at Microsoft
May 5, 2022, is World Password Day, a day we all use to create awareness around password security. At Microsoft, we choose to celebrate replacing passwords with better and more secure ways to sign in. I can’t think of a better person at Microsoft to represent this journey than Libby Brown, a seni...
strategicplan.duke.edu Improper Access Control vulnerability OBB-2181975
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
ags.duke.edu Improper Access Control vulnerability
Open Bug Bounty ID: OBB-1067467 Security Researcher devl00p Helped patch 2581 vulnerabilities Received 10 Coordinated Disclosure badges Received 15 recommendations , a holder of 10 badges for responsible and coordinated disclosure, found a security vulnerability affecting ags.duke.edu website and...
livinghistory.sanford.duke.edu Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1006770 Security Researcher devl00p Helped patch 2581 vulnerabilities Received 10 Coordinated Disclosure badges Received 15 recommendations , a holder of 10 badges for responsible and coordinated disclosure, found a security vulnerability affecting...
mon-01.econ.duke.edu XSS vulnerability
Open Bug Bounty ID: OBB-678119 Description| Value ---|--- Affected Website:| mon-01.econ.duke.edu Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
dukestores.duke.edu XSS vulnerability
Open Bug Bounty ID: OBB-625496 Description| Value ---|--- Affected Website:| dukestores.duke.edu Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
qtmodule.dcri.duke.edu XSS vulnerability
Open Bug Bounty ID: OBB-564793 Description| Value ---|--- Affected Website:| qtmodule.dcri.duke.edu Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
finance.duke.edu XSS vulnerability
Vulnerable URL: https://finance.duke.edu/systems/glossary/index.php?pagenum=6%22%3E%3Csvg/onload=prompt/OPENBUGBOUNTY/%3E=17%22%3E%3Csvg/onload=prompt/OPENBUGBOUNTY/%3E&&%22%3E%3Csvg/onload=prompt/OPENBUGBOUNTY/%3E Details: Description| Value ---|--- Patched:| Yes, at 05.01.2018 Latest check for...
WordPress UserPro 4.6.17 Authentication Bypass
Exploit Title: Userpro a WordPress Plugin a Authentication Bypass Google Dork: inurl:/plugins/userpro Date: 11.04.2017 Exploit Author: Colette Chamberland Wordfence, Iain Hadgraft Duke University Vendor Homepage: https://codecanyon.net/item/userpro-user-profiles-with-social-login/5958681?srank=9...
WordPress Userpro Plugin < 4.9.17.1 - Authentication Bypass Vulnerability
Exploit for php platform in category web applications Exploit Title: Userpro – WordPress Plugin – Authentication Bypass Google Dork: inurl:/plugins/userpro Date: 11.04.2017 Exploit Author: Colette Chamberland Wordfence, Iain Hadgraft Duke University Vendor Homepage:...
medschool.duke.edu XSS vulnerability
Vulnerable URL: https://medschool.duke.edu/search-results?asq='" Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website status:| No Coordinated Disclosure Timeline: Description| Valu...
db.library.duke.edu XSS vulnerability
Open Bug Bounty ID: OBB-293538 Description| Value ---|--- Affected Website:| db.library.duke.edu Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
scholars.duke.edu XSS vulnerability
Vulnerable URL: https://scholars.duke.edu/search?querytext=%22%3E%3Cimg%20src=x%20onerror=prompt%27OPENBUGBOUNTY%27%3E Details: Description| Value ---|--- Patched:| Yes, at 27.11.2017 Latest check for patch:| 27.11.2017 16:43 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed...
fuqua.duke.edu XSS vulnerability
Vulnerable URL: http://www.fuqua.duke.edu/layout/flash/mediaplayer.swf?file=http://content.bitsontherun.com/videos/bkaovAYt-364%20766.flv=falseℑ=http://appsec.ws/ExploitDB/cMon.jpg=true=javascript:confirm/openbugbounty/;//=blank&.swf Details: Description| Value ---|--- Patched:| No Latest check f...