5118 matches found
runner.id IFRAME Injection vulnerability
Open Bug Bounty ID: OBB-623678 Description| Value ---|--- Affected Website:| runner.id Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Iframe Injection / CWE-79 CVSSv3 Score:| 6.1...
softwareok.eu IFRAME Injection vulnerability
Open Bug Bounty ID: OBB-623578 Description| Value ---|--- Affected Website:| softwareok.eu Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Iframe Injection / CWE-79 CVSSv3 Score:| 6.1...
softwareok.de IFRAME Injection vulnerability
Open Bug Bounty ID: OBB-623577 Description| Value ---|--- Affected Website:| softwareok.de Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Iframe Injection / CWE-79 CVSSv3 Score:| 6.1...
softwareok.com IFRAME Injection vulnerability
Open Bug Bounty ID: OBB-623576 Description| Value ---|--- Affected Website:| softwareok.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Iframe Injection / CWE-79 CVSSv3 Score:| 6.1...
resbook.net IFRAME Injection vulnerability
Open Bug Bounty ID: OBB-623333 Description| Value ---|--- Affected Website:| resbook.net Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Iframe Injection / CWE-79 CVSSv3 Score:| 6.1...
zipy.co.il IFRAME Injection vulnerability
Open Bug Bounty ID: OBB-623311 Description| Value ---|--- Affected Website:| zipy.co.il Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Iframe Injection / CWE-79 CVSSv3 Score:| 6.1...
dimensidata.com IFRAME Injection vulnerability
Open Bug Bounty ID: OBB-622878 Description| Value ---|--- Affected Website:| dimensidata.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Iframe Injection / CWE-79 CVSSv3 Score:| 6.1...
bukupedia.com IFRAME Injection vulnerability
Open Bug Bounty ID: OBB-622867 Description| Value ---|--- Affected Website:| bukupedia.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Iframe Injection / CWE-79 CVSSv3 Score:| 6.1...
Tor: Tor Browser: iframe with `data:` uri has access to parent window
Version: 7.5.4 based on Mozilla Firefox 52.8.0 Tested with standard security slider. However, it's likely to be possible with a higher security level. Summary In Tor Browser iframe with data:uri inherits the origin of parent window. That leads to iframe has access to parent window. PoC Iframe cou...
alternate-tools.com IFRAME Injection vulnerability
Open Bug Bounty ID: OBB-622735 Description| Value ---|--- Affected Website:| alternate-tools.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Iframe Injection / CWE-79 CVSSv3 Score:| 6.1...
serranegra.rn.gov.br IFRAME Injection vulnerability
Open Bug Bounty ID: OBB-621387 Description| Value ---|--- Affected Website:| serranegra.rn.gov.br Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Iframe Injection / CWE-79 CVSSv3 Score:| 6.1...
saomamede.pb.gov.br IFRAME Injection vulnerability
Open Bug Bounty ID: OBB-621304 Description| Value ---|--- Affected Website:| saomamede.pb.gov.br Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Iframe Injection / CWE-79 CVSSv3 Score:| 6.1...
camarapatos.pb.gov.br IFRAME Injection vulnerability
Open Bug Bounty ID: OBB-621303 Description| Value ---|--- Affected Website:| camarapatos.pb.gov.br Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Iframe Injection / CWE-79 CVSSv3 Score:| 6.1...
patos.pb.gov.br IFRAME Injection vulnerability
Open Bug Bounty ID: OBB-621302 Description| Value ---|--- Affected Website:| patos.pb.gov.br Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Iframe Injection / CWE-79 CVSSv3 Score:| 6.1...
mesowest.utah.edu IFRAME Injection vulnerability
Open Bug Bounty ID: OBB-621099 Description| Value ---|--- Affected Website:| mesowest.utah.edu Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Iframe Injection / CWE-79 CVSSv3 Score:| 6.1...
findu.com IFRAME Injection vulnerability
Open Bug Bounty ID: OBB-621097 Description| Value ---|--- Affected Website:| findu.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Iframe Injection / CWE-79 CVSSv3 Score:| 6.1...
wnps.org IFRAME Injection vulnerability
Open Bug Bounty ID: OBB-618808 Description| Value ---|--- Affected Website:| wnps.org Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Iframe Injection / CWE-79 CVSSv3 Score:| 6.1...
CVE-2018-11101
Open Whisper Signal aka Signal-Desktop through 1.10.1 allows XSS via a resource location specified in an attribute of a SCRIPT, IFRAME, or IMG element, leading to JavaScript execution after a reply, a different vulnerability than CVE-2018-10994. The attacker needs to send HTML code directly as a...
CVE-2018-11101
CVE-2018-11101 affects Signal Desktop (Open Whisper Signal) up to version 1.10.1. The vulnerability arises from incorrect handling of HTML when rendering quoted-reply messages, allowing XSS via HTML injected in a message that is later quoted/replied to. The root cause involved React dangerouslySe...
CVE-2018-0326
Cisco TelePresence Server Software web UI is affected by CVE-2018-0326 due to insufficient protections for HTML iframe embeds, enabling an unauthenticated attacker to perform a cross-frame scripting attack via a user-nes navigated, attacker-controlled page containing a malicious iframe. The resul...