Photo booth flaw exposes people’s private pictures online

Photo booths are great. You press a button and get instant results. The same can’t be said, allegedly, for the security practices of at least one company operating them. A security researcher spent weeks trying to warn a photo booth operator about a vulnerability in its system. The flaw reportedl...

Photo booth flaw exposes people’s private pictures online

Photo booths are great. You press a button and get instant results. The same can’t be said, allegedly, for the security practices of at least one company operating them. A security researcher spent weeks trying to warn a photo booth operator about a vulnerability in its system. The flaw reportedl...

CVE-2025-13949 ProudMuBai GoFilm FileController.go SingleUpload unrestricted upload

A vulnerability was identified in ProudMuBai GoFilm 1.0.0/1.0.1. Impacted is the function SingleUpload of the file /server/controller/FileController.go. The manipulation of the argument File leads to unrestricted upload. The attack may be initiated remotely. The exploit is publicly available and...

A message from Bruce the mechanical shark

Welcome to this week's edition of the Threat Source newsletter. Hi, I'm Bruce, the 25-foot mechanical star of "Jaws." This summer marks 50 years since my 4 minutes of screentime kept people out of the water for decades. Maybe this Fourth of July weekend you're planning to sea-shanty your way to a...

The Real Story of “The Order”

The new film about an FBI agent chasing a white supremacist terror cell is based on a true story—and one that connects the headlines of 40 years ago to those of today...

MAL-2024-2562 Malicious code in john-wick-kapitel-4-ganzer-film-auf-deutsch (npm)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in john-wick-kapitel-4-ganzer-film-auf-deutsch (npm)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in j-o-h-n-wick-4-pelicula-completa-en-espanol-latino-6-k (npm)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in 6.7m-views-in-boots-the-last-wish-2023-full-online-free-on-streaming-at-home (npm)

--- -= Per source details. Do not edit below this line.=-...

MAL-2024-1688 Malicious code in -john-wick-4-keanu-reeves-peliculas-completa-varindo-h-d-varindo-en-casa-tarabi-lliena- (npm)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in -accion-pelicula-john-wick-4-keanu-reeves-peliculas-completa-varindo-h-d-varindo-en-casa-lliena- (npm)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in -accion-pelicula-john-wick-4-keanu-reeves-peliculas-completa-varindo-allah-varindo-en-casa-lliena- (npm)

--- -= Per source details. Do not edit below this line.=-...

calgaryundergroundfilm.org Cross Site Scripting vulnerability OBB-3932909

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

luxx-film.com Cross Site Scripting vulnerability OBB-3908349

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

miamijewishfilmfestival.org Cross Site Scripting vulnerability OBB-3888993

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

filmfestivalacademy.net Cross Site Scripting vulnerability OBB-3867798

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

simpleredak.fandangofilm.de Cross Site Scripting vulnerability OBB-3830956

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

netzwerk-film-musik.de Improper Access Control vulnerability OBB-3820078

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

globalstudio.film Cross Site Scripting vulnerability OBB-3756148

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

figueirafilmart.com Cross Site Scripting vulnerability OBB-3755716

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...