48 matches found
zaycev.kz XSS vulnerability
Open Bug Bounty ID: OBB-530421 Description| Value ---|--- Affected Website:| zaycev.kz Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
erb.org.zm XSS vulnerability
Open Bug Bounty ID: OBB-361056 Description| Value ---|--- Affected Website:| erb.org.zm Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat Sheet...
Hashicorp vagrant-vmware-fusion <= 4.0.20 - Local root Privilege Esclation Exploit
Exploit for macOS platform in category local exploits I'm a big fan of Hashicorp but this is an awful bug to have in software of their calibre. Their vagrant plugin for vmware fusion uses a product called Ruby Encoder to protect their proprietary ruby code. It does this by turning the ruby code...
shop.fstrings.com XSS vulnerability
Open Bug Bounty ID: OBB-168095 Description| Value ---|--- Affected Website:| shop.fstrings.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
auth.knowledge.scot.nhs.uk Open Redirect vulnerability
Open Bug Bounty ID: OBB-64451 Description| Value ---|--- Affected Website:| auth.knowledge.scot.nhs.uk Vulnerable Application:| Custom Code Vulnerability Type:| Open Redirect / CWE-601 CVSSv3 Score:| 3.4 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:N Remediation Guide:| OWASP Open Redirect Cheat...
[Responsible disclosure] Hacking Facebook.com/thanks Posting on behalf of your friends!
Note: This is being published with the permission of Facebook under the responsible disclosure policy. The vulnerability is now fixed. Facebook recently introduced "Say Thanks", an experience that lets Facebook user to create personalized video cards for their facebook friends. To create a Thanks...
Google Chrome < 14.0.835.163 - '.pdf' File Handling Memory Corruption
----------------Security Adisory---------------- Title: Google Chrome = 14.0.835.163 Discovered by: Mario Gomes ----------------Summary---------------- Google Chrome is a web browser developed by Google that uses the WebKit layout engine. It was first released as a beta version for Microsoft...
NetBSD Security Advisory 2002-015: (another) buffer overrun in libc/libresolv DNS resolver
-----BEGIN PGP SIGNED MESSAGE----- NetBSD Security Advisory 2002-015 ================================= Topic: another buffer overrun in libc/libresolv DNS resolver Version: NetBSD-current: source prior to August 28, 2002 NetBSD-1.6 beta: source prior to August 28, 2002 NetBSD-1.5.3: affected...