PT-2025-52029

Name of the Vulnerable Software and Affected Versions AncoraThemes EasyEat versions through 1.9.0 Description The software contains a flaw related to improper control of filename for include/require statements, specifically a PHP Local File Inclusion issue. This allows for the inclusion of local...

CVE-2020-5799

The Eat Spray Love mobile app for both iOS and Android contains a backdoor account that, when modified, allowed privileged access to restricted functionality and to other users' data...

eat-it.org Cross Site Scripting vulnerability OBB-3061593

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

eat-this.org Improper Access Control vulnerability OBB-2219468

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Friday Squid Blogging: Best Squid-Related Headline

From the New York Times: "When an Eel Climbs a Ramp to Eat Squid From a Clamp, Thats a Moray." The article is about the eel; the squid is just eel food. But still…. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Read my blog posti...

HookDump - Security Product Hook Detection

EDR function hook dumping Please refer to the Zeroperil blog post for more information https://zeroperil.co.uk/hookdump/ Building source In order to build this you will need Visual Studio 2019 community edition is fine and CMake. The batch file Configure.bat will create two build directories with...

CVE-2020-5800

The Eat Spray Love mobile app for both iOS and Android contains logic that allows users to bypass authentication and retrieve or modify information that they would not normally have access to...

CVE-2020-5800

The Eat Spray Love mobile app for both iOS and Android contains logic that allows users to bypass authentication and retrieve or modify information that they would not normally have access to...

CVE-2020-5799

The Eat Spray Love mobile app for both iOS and Android contains a backdoor account that, when modified, allowed privileged access to restricted functionality and to other users' data...

CVE-2020-5800

The Eat Spray Love mobile app for both iOS and Android contains logic that allows users to bypass authentication and retrieve or modify information that they would not normally have access to...

CVE-2020-5800

Summary: CVE-2020-5800 affects the Eat Spray Love mobile app (iOS and Android) and describes an authentication-bypass flaw that lets an attacker access or modify information beyond normal permissions. The connected records identify the impact as unauthorized data access/modification and classify ...

CVE-2020-5799

The Eat Spray Love mobile app for both iOS and Android contains a backdoor account that, when modified, allowed privileged access to restricted functionality and to other users' data...

CVE-2020-5799

The CVE-2020-5799 entry concerns the Eat Spray Love mobile app for iOS and Android, where a backdoor account could be modified to grant privileged access to restricted functionality and to other users’ data. The issue is described consistently across sources as a backdoor account weakness, not a ...

Mark Goldstein Eat Spray Love Authorization Issue Vulnerability

Mark Goldstein Eat Spray Love is a mobile app about fitness by Mark Goldstein personal developer. A security vulnerability exists in the Eat Spray Love mobile app that allows users to bypass authentication, logic to retrieve or modify information they would not normally have access to...

Mark Goldstein Eat Spray Love Security Breach

Mark Goldstein Eat Spray Love is a mobile app about fitness by Mark Goldstein personal developer. A security vulnerability exists in the Eat Spray Love mobile app, which stems from the inclusion of a backdoor account that, when modified, could allow a user privileged access to restricted features...

eat-this.org Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1032733 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website...

eat-this.org XSS vulnerability

Open Bug Bounty ID: OBB-703630 Description| Value ---|--- Affected Website:| eat-this.org Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| hidden unt...

eat-drink-design.com XSS vulnerability

Open Bug Bounty ID: OBB-695554 Description| Value ---|--- Affected Website:| eat-drink-design.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:|...

eat-this.org XSS vulnerability

Open Bug Bounty ID: OBB-558201 Description| Value ---|--- Affected Website:| eat-this.org Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Allwin MessageBoxA Shellcode

No description provided by source. / Title: Allwin MessageBoxA Shellcode Date: 2010-06-11 Author: RubberDuck Web: http://bflow.security-portal.cz Tested on: Win 2k, Win 2003, Win XP Home SP2/SP3 CZ/ENG 32, Win Vista 32/64, Win 7 32/64, Win 2k8 32 Thanks to: kernelhunter, Lodus, Vrtule, Mato,...