CVE-2021-3183

Files.com Fat Client 3.3.6 allows authentication bypass because the client continues to have access after a logout and a removal of a login profile...

tech-files.com Cross Site Scripting vulnerability OBB-3280106

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

CVE-2021-3183

Files.com Fat Client 3.3.6 allows authentication bypass because the client continues to have access after a logout and a removal of a login profile...

CVE-2021-3183

Files.com Fat Client 3.3.6 allows authentication bypass because the client continues to have access after a logout and a removal of a login profile...

Authentication flaw

Files.com Fat Client 3.3.6 allows authentication bypass because the client continues to have access after a logout and a removal of a login profile...

CVE-2021-3183

CVE-2021-3183 affects Files.com Fat Client 3.3.6. The vulnerability is an authentication bypass where the client retains access after logout and after a login profile is removed. Root cause is not explicitly detailed in the provided documents. Impact: potential unauthorized access to the applicat...

CVE-2021-3183

Files.com Fat Client 3.3.6 allows authentication bypass because the client continues to have access after a logout and a removal of a login profile...

File.com Fat Client Code Issue Vulnerability

File.com Fat Client is a fat client application from US-based File.com. A code issue vulnerability exists in Files.com Fat Client 3.3.6 that allows bypassing authentication because the client still has access after logging out and deleting the login profile...

g00gle-files.com Cross Site Scripting vulnerability OBB-1438508

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

latest-files.com Cross Site Scripting vulnerability OBB-1428204

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

govt-files.com Cross Site Scripting vulnerability OBB-1342543

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

m-files.com XSS vulnerability

Open Bug Bounty ID: OBB-711741 Description| Value ---|--- Affected Website:| m-files.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| hidden unti...

govt-files.com XSS vulnerability

Open Bug Bounty ID: OBB-695936 Description| Value ---|--- Affected Website:| govt-files.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| hidden...

open-my-files.com XSS vulnerability

Open Bug Bounty ID: OBB-212922 Description| Value ---|--- Affected Website:| open-my-files.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Slack: Stored XSS on team.slack.com using new Markdown editor of posts inside the Editing mode and using javascript-URIs

Hi, I noticed while looking at an old article I made a while ago that some links were actually inserted as javascript:-links. Doing some modifications to these actually revealed that inside editing mode, no protection is added for getting arbitrary scripts to run. This means that by catching the...

Unfixed XSS vulnerability at www.dll-files.com

Security researcher Vagrant, has submitted on 18/03/2007 a cross-site-scripting XSS vulnerability affecting www.dll-files.com, which at the time of submission ranked 15436 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 18/03/2007. It is...