Open Redirect in blogifierdotnet/blogifier

Description Open redirect at login page due to unchecked "returnUrl" param Proof of Concept 1. Go to demo page link http://demo.blogifier.net/admin/login/?returnUrl=https://google.com 2. Login using demo account and see that you are redirected to google.com Impact This vulnerability is capable of...

google.com Open Redirect vulnerability

Open Bug Bounty ID: OBB-1135656 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website...

GSA Bounty: open redirect in eb9f.pivcac.prod.login.gov

poc: https://eb9f.pivcac.prod.login.gov/?nonce=wI0UglN84A06Q4z4JnkZVc3i1V8%3D&redirecturi=https%3A%2F%2Fgoogle.com%23%40secure.login.gov%2Flogin%2Fpivcac visit this and will redirect to google.com Impact phishing...

yahoo.com

Pentest notes for: google.com Exploit Pack Nmap 7.70 scan initiated Mon Sep 24 23:08:15 2018 as: C:\Program Files x86\Nmap\nmap.exe -sV -A -oA log/google.com google.com Nmap scan report for google.com 172.217.19.206 Host is up 0.027s latency. rDNS record for 172.217.19.206:...

Linux/86 - File Modification (/etc/hosts 127.1.1.1 google.com) + Polymorphic Shellcode (99 bytes)

Linux/86 - File Modification /etc/hosts 127.1.1.1 google.com + Polymorphic Shellcode 99 bytes. Shellcode exploit for Linuxx86 platform / Title: Linux/86 - File Modification/etc/hosts Polymorphic Shellcode 99 bytes Date: 2018-09-13 Author: Ray Doyle @doylersec Tested on: Linux/x86 gcc -o...

google.com Open Redirect vulnerability

Open Bug Bounty ID: OBB-452574 Description| Value ---|--- Affected Website:| google.com Vulnerable Application:| Custom Code Vulnerability Type:| Open Redirect / CWE-601 CVSSv3 Score:| 3.4 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:N Remediation Guide:| OWASP Open Redirect Cheat Sheet Vulnerable...

google.com Open Redirect vulnerability

Open Bug Bounty ID: OBB-359520 Description| Value ---|--- Affected Website:| google.com Vulnerable Application:| Custom Code Vulnerability Type:| Open Redirect / CWE-601 CVSSv3 Score:| 3.4 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:N Remediation Guide:| OWASP Open Redirect Cheat Sheet Vulnerable...

Google rewarded the Guy who Accidentally bought Google.com, But he Donated it to Charity

Sanmay Ved – the man who actually managed to buy Google.com got a huge reward from Google, but he donated all money to charity. Last week, an ex-Google employee and now-Amazon employee managed to buy the world's most-visited domain Google.com via Google's own Domains service for only $12. However...

How Amazon Employee bought 'Google.com' Domain for Only $12 from Google

Difficult to believe this, as we hardly come across such news. But trust me, a person managed to buy no ordinary .com domain, but — Google.com and that too for one whole minute. Sanmay Ved, an ex-Google employee and current-Amazon employee, experienced something of a shock when he found that the...

linux/x86 - Obfuscated - map google.com to 127.1.1.1 98 bytes

linux/x86 - Obfuscated - map google.com to 127.1.1.1 98 bytes. Shellcode exploit for linx86 platform / Linux x86 - map google.com to 127.1.1.1 in /etc/hosts Obfuscated version - 98 bytes Original: http://shell-storm.org/shellcode/files/shellcode-893.php Author: xmgv Details:...

CVE-2014-3760

Multiple cross-site request forgery CSRF vulnerabilities in D-Link DAP 1150 with firmware 1.2.94 allow remote attackers to hijack the authentication of administrators for requests that 1 enable or 2 disable the DMZ in the Firewall/DMZ section via a request to index.cgi or 3 add, 4 modify, or 5...

PragmaMX 1.2.10 - Persistent Cross-Site Scripting

PragmaMX 1.2.10 - Persistent Cross-Site Scripting TITLE ... Persistent XSS in PragmaMX 1.12.0 for logged in users DATE .... 30.01.2012 .......................................... AUTOHR .. http://hauntit.blogspot.com ................ SOFT LINK http://www.pragmamx.org...

Google.com Open Redirect

======================================================================= Google.com - Open Redirect ======================================================================= Affected Domain : Google.com Severity : Very Low Local/Remote : Remote Vulnerable URL :...

Mambo SMF 1.0.5 Remote File Inclusion

========================================================= Mambo Component comsmf 1.0.5 RFI Vulnerability ========================================================= +Title : Mambo Component comsmf 1.0.5 RFI Vulnerability +Software : SMF 1.0.5 +Vendor : http://mamboserver.com/ +Download :...

IntelliTamper 2.072.08 - Defer Remote Buffer Overflow (PoC)

IntelliTamper 2.072.08 - Defer Remote Buffer Overflow PoC H0m3 : S3curity-art.com & Google.com M4!L : [email protected] & [email protected] usage : perl xpl.pl xpl.html my $IntelliTamperhtml ='SkuLL-HackeR Home World' . '' . ""; print $IntelliTamperhtml;...

IntelliTamper 2.07/2.08 - Defer Remote Buffer Overflow (PoC)

H0m3 : S3curity-art.com & Google.com M4!L : [email protected] & [email protected] usage : perl xpl.pl xpl.html my $IntelliTamperhtml ='SkuLL-HackeR Home World' . '' . ""; print $IntelliTamperhtml;...

Gbook MX 4.1.0 (Arabic Version) - Remote File Inclusion

======================================================================================== | Title : Gbook MX v4.1.0 Arabic Version File inclusion Vulnerability | Author : indoushka | email : [email protected] | Home : Souk Naamane - 04325 - Oum El Bouaghi - Algeria -00213771818860 | Total aler...

Unfixed XSS vulnerability at www.aramamotoru-google.com

Security researcher Grand Chyren, has submitted on 25/07/2008 a cross-site-scripting XSS vulnerability affecting www.aramamotoru-google.com, which at the time of submission ranked 5681376 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on...

facebook newsroom CMS 0.5.0 Beta 1 - Remote File Inclusion

Facebook Newsroom Application Remote File Inclusion Vulnerability Discovered by : Ciph3r MAIL : [email protected] SP tanx4: Iranian hacker & Kurdish security TEAM sp TANX2: milw0rm.com & google.com & sourceforge.net CMS download : http://sourceforge.net/project/showfiles.php?groupid=221515...

Orca 2.0/2.0.2 - 'params.php?gConf[dir][layouts]' Remote File Inclusion

Orca - Interactive Forum Script Remote File Inclusion Vulnerability Discovered by : Ciph3r MAIL : [email protected] SP tanx4: Iranian hacker & Kurdish security TEAM sp TANX2: milw0rm.com & google.com & sourceforge.net CMS download :...