8 matches found
manfred-heise.de Improper Access Control vulnerability OBB-2411805
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
heise.de XSS vulnerability
Open Bug Bounty ID: OBB-623681 Description| Value ---|--- Affected Website:| heise.de Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
heise.de XSS vulnerability
Open Bug Bounty ID: OBB-287484 Description| Value ---|--- Affected Website:| heise.de Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
heise.de XSS vulnerability
Vulnerable URL: https://www.heise.de/ct/entdecken/?unterrubrik==" Details: Description| Value ---|--- Patched:| Yes, at 03.02.2017 Latest check for patch:| 03.02.2017 07:22 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 1416 VIP website status:| Yes Check...
heise.de XSS vulnerability
Vulnerable URL: https://www.heise.de/download/search?terms=sss=%22%3E%3Csvg/onload=prompt/OPENBUGBOUNTY/%3E Details: Description| Value ---|--- Patched:| Yes, at 27.01.2017 Latest check for patch:| 27.01.2017 10:50 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank|...
heise.de XSS vulnerability
Vulnerable URL: https://www.heise.de/ct/artikel/Sicheres-Online-Banking-mit-Bankix-284099.html?seite=1zqjar'" Details: Description| Value ---|--- Patched:| Yes, at 19.01.2017 Latest check for patch:| 19.01.2017 06:20 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Ran...
heise.de XSS vulnerability
Vulnerable URL: https://www.heise.de/ct/entdecken/?unterrubrik="// Details: Description| Value ---|--- Patched:| Yes, at 13.12.2016 Latest check for patch:| 13.12.2016 11:41 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 1283 VIP website status:| Yes Check...
Heise.de Cross Site Scripting
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Advisory: heise.de - Cross-site Scripting vulnerability Advisory ID: SSCHADV2013-002 Author: Stefan Schurtz Affected Software: Successfully tested on heise.de Vendor URL: http://www.heise.de Vendor Status: fixed ========================== Vulnerabilit...