174 matches found
Malicious Package
Overview wynn-and-encore is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
EUVD-2014-5025
Malware in sbrugna...
EUVD-2004-1881
Malware in sbrugna...
EUVD-2008-6161
Malware in sbrugna...
Malicious code in wynn-and-encore (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-11503 Malicious code in wynn-and-encore (npm)
--- -= Per source details. Do not edit below this line.=-...
encorehomefurnishings.net Cross Site Scripting vulnerability OBB-3879478
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
CVE-2018-8863
The HTTP header in Philips EncoreAnywhere contains data an attacker may be able to use to gain sensitive information...
encorehomefurnishings.com Cross Site Scripting vulnerability OBB-3738364
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
encorehomefurnishings.net Cross Site Scripting vulnerability OBB-3552535
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Arbitrary File Upload
encore/laravel-admin is vulnerable to Arbitrary File Upload. The vulnerability exists because the library does not properly validate files uploaded, allowing an attacker to bypass the file upload restrictions by uploading a malicious .php file...
ramadaencorekartal.com Cross Site Scripting vulnerability OBB-2448641
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
encore-tap.org Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1027224 Security Researcher g0bl1nsec Helped patch 3768 vulnerabilities Received 4 Coordinated Disclosure badges Received 3 recommendations , a holder of 4 badges for responsible and coordinated disclosure, found a security vulnerability affecting encore-tap.org website an...
Cross-Site Scripting (XSS)
encore/laravel-admin is vulnerable to cross-site scripting XSS. It is possible because it does not properly handle the "Operation Log" screen, allowing an attacker to inject arbitrary script through Slug or Name parameters on the Roles screen...
Encore Music - Certificates or keys found, Customized SSL, Exported components vulnerabilities
HackApp vulnerability scanner discovered that application Encore Music published at the 'play' market has multiple vulnerabilities...
Encore Discovery Solution Multiple Vulnerability Disclosure
Product: Encore Discovery Solution Vendor: Innovative Interfaces Inc Vulnerable Version: 4.3 Tested Version: 4.3 Vendor Notification: June 19, 2014 Public Disclosure: August 26, 2014 Vulnerability Type: Open Redirect CWE-601 CVE Reference: CVE-2014-5127 Risk Level: Medium CVSSv2 Base Score: 4.3...
CVE-2014-5128
The vulnerability CVE-2014-5128 affects Encore Discovery Solution 4.3 from Innovative Interfaces Inc. The advisory details that the product “places a session token in the URI,” exposing the session token via GET parameters and creating potential information leakage through unspecified vectors. Th...
CVE-2014-5127
CVE-2014-5127 is an Open Redirect vulnerability in Encore Discovery Solution 4.3 by Innovative Interfaces Inc. Attackers can redirect users to attacker-controlled sites via a crafted URL parameter, enabling phishing attempts. The SecurityVulns entry confirms product, vulnerable version (4.3), and...
CVE-2014-5127
Open redirect vulnerability in Innovative Interfaces Encore Discovery Solution 4.3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in an unspecified parameter...
CVE-2014-5128
Innovative Interfaces Encore Discovery Solution 4.3 places a session token in the URI, which might allow remote attackers to obtain sensitive information via unspecified vectors...