14 matches found
EUVD-2014-6843
Malware in sbrugna...
faz.net Cross Site Scripting vulnerability OBB-1344167
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
faz.net Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1161816 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website...
faz.net Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1110686 Security Researcher raviakp1004 Helped patch 796 vulnerabilities Received 4 Coordinated Disclosure badges Received 6 recommendations , a holder of 4 badges for responsible and coordinated disclosure, found a security vulnerability affecting faz.net website and its...
immobilienmarkt.faz.net XSS vulnerability
Open Bug Bounty ID: OBB-610150 Description| Value ---|--- Affected Website:| immobilienmarkt.faz.net Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
faz.net XSS vulnerability
Open Bug Bounty ID: OBB-472581 Description| Value ---|--- Affected Website:| faz.net Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
faz.net XSS vulnerability
Open Bug Bounty ID: OBB-447214 Description| Value ---|--- Affected Website:| faz.net Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat Sheet...
faz.net XSS vulnerability
Vulnerable URL: http://www.faz.net/aktuell/feuilleton/kino/video-filmkritiken/?offset=&seriesCategory1;=&seriesCategory2;==%22%3E%3Cimg+src%3Dx+onerror%3Dalert%28%27XSSPOSED%27%29%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| XSS...
FAZ.NET - Nachrichten - Customized SSL, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application FAZ.NET - Nachrichten published at the 'play' market has multiple vulnerabilities...
faz.net XSS vulnerability
Open Bug Bounty ID: OBB-108250 Description| Value ---|--- Affected Website:| faz.net Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
CVE-2014-6965
The FAZ.NET aka net.faz.FAZ application 1.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Information disclosure
The FAZ.NET aka net.faz.FAZ application 1.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-6965
The FAZ.NET aka net.faz.FAZ application 1.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-6965
The vulnerability CVE-2014-6965 affects the FAZ.NET (net.faz.FAZ) Android app version 1.0.1, which does not verify X.509 certificates from SSL servers. This enables man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. The provided sources confir...