MAL-2025-35494 Malicious code in test-mlw2-harry-crith (npm)

The package test-mlw2-harry-crith was found to contain malicious code...

Malicious code in test-mlw2-harry-crith (npm)

The package test-mlw2-harry-crith was found to contain malicious code...

shop.harrywegner.de Cross Site Scripting vulnerability OBB-3272569

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

harry-neufeld.de Cross Site Scripting vulnerability OBB-2694141

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

USN-5412-1: curl vulnerabilities

Axel Chong discovered that curl incorrectly handled percent-encoded URL separators. A remote attacker could possibly use this issue to trick curl into using the wrong URL and bypass certain checks or filters. This issue only affected Ubuntu 22.04 LTS. CVE-2022-27780 Florian Kohnhuser discovered...

harry-k.eu Cross Site Scripting vulnerability OBB-2488955

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Even Privacy-Focused Cryptocurrency Can Spill Your Secrets

From a Harry Potter-themed protocol to high-profile coins, cryptocurrency is often not quite as private as it seems...

CVE-2017-17224

Some Huawei smart phones with versions earlier than Harry-AL00C 9.1.0.206C00E205R3P1 have a null pointer dereference vulnerability. An attacker crafts specific packets and sends to the affected product to exploit this vulnerability. Successful exploitation may cause the affected phone abnormal...

Unspecified Vulnerability in Multiple Huawei Products

The Huawei Harry-AL00C, among others, is a smartphone from the Chinese company Huawei Huawei. A security vulnerability exists in several Huawei products, which can be exploited by an attacker to cause anomalies in the use of the phone by constructing a specific message and sending it to the...

Remote Authentication GeoFeasibility Tool - GeoLogonalyzer

Users have long needed to access important resources such as virtual private networks VPNs, web applications, and mail servers from anywhere in the world at any time. While the ability to access resources from anywhere is imperative for employees, threat actors often leverage stolen credentials t...

harrypotterfanzone.com XSS vulnerability

Open Bug Bounty ID: OBB-446615 Description| Value ---|--- Affected Website:| harrypotterfanzone.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention...

harrycooper.com XSS vulnerability

Vulnerable URL: https://www.harrycooper.com/silver/largeImage.jsp?img=xss%22%20onerror=prompt%27openbugbounty%27%20%22 Details: Description| Value ---|--- Patched:| No Latest check for patch:| 10.01.2018 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 5540752 VIP...

June 26, 2017 – Morning Cyber Coffee Headlines – “Harry Potter” Edition

Good morning! Sit with Carbon Black this morning over a cup of coffee or tea and browse a few industry headlines to get the day started. We’ve got just enough information below to get you through that first cup…enjoy! June 26, 2017 - Headlines Carbon Black in the News: How to go threat hunting: t...

Ubuntu 14.04 LTS / 16.04 LTS : tar vulnerability (USN-3132-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-3132-1 advisory. Harry Sintonen discovered that tar incorrectly handled extracting files when path names are specified on the command line. If a user or automated syst...

Ultimate Harry Potter Trivia - Base64 encoded String, Exported ContentProvider, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Ultimate Harry Potter Trivia published at the 'play' market has multiple vulnerabilities...

Quiz of Harry Potter Character - Dynamic Code Loading, External URLs, Unsafe deleting vulnerabilities

HackApp vulnerability scanner discovered that application Quiz of Harry Potter Character published at the 'play' market has multiple vulnerabilities...

Trivia for Harry Potter Spells - Base64 encoded String, Exported ContentProvider, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Trivia for Harry Potter Spells published at the 'play' market has multiple vulnerabilities...

Quiz for Harry Potter fans - Dynamic Code Loading, External URLs, Suspicious files vulnerabilities

HackApp vulnerability scanner discovered that application Quiz for Harry Potter fans published at the 'play' market has multiple vulnerabilities...

Fanquiz for Harry Potter - Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Fanquiz for Harry Potter published at the 'play' market has multiple vulnerabilities...

Bloody Harry - Customized SSL, Dangerous filesystem permissions, Insecure KeyStore vulnerabilities

HackApp vulnerability scanner discovered that application Bloody Harry published at the 'play' market has multiple vulnerabilities...