CVE-2016-9650

CVE-2016-9650 refers to a CSP referrer disclosure vulnerability in the Chromium/Chrome Blink stack, allowing a remote attacker to bypass no-referrer protections via a crafted page that uses iframes. Affected software includes Chromium/Chrome prior to the fixed versions; the issue is categorized a...

CVE-2016-9650

Removed by vendor...

memecenter.com IFRAME Injection vulnerability

Vulnerable URL: http://www.memecenter.com/search/deeeeeeee" Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability type:| IFRAME Injection Vulnerability status:| Publicly disclosed Alexa Rank| 9166 VIP website status:| Yes Coordinated Disclosure Timelin...

Malware exploit: Cythosia

Type: Stored XSS and iFrame redirect Click add task Command: IFRAME SRC="whateverekorlemonpartyorwhatnot.com" /IFRAME Then Click Create Task Finally click Tasks. VOILA! Credits to asterea for finding this botnet panel...

apps.gsccca.org IFRAME Injection vulnerability

Vulnerable URL: https://apps.gsccca.org/login.asp?Redirect=%22%3E%3Ciframe%20src=%22https://openbugbounty.org Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| IFRAME Injection Vulnerability status:| Publicly disclosed Alexa Rank| Unknown /...

foyel.com IFRAME Injection vulnerability

Open Bug Bounty ID: OBB-200444 Description| Value ---|--- Affected Website:| foyel.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Iframe Injection / CWE-79 CVSSv3 Score:| 6.1...

infobharti.com IFRAME Injection vulnerability

Vulnerable URL: http://infobharti.com/india-info/o.php?out=https://www.openbugbounty.org Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| IFRAME Injection Vulnerability status:| Publicly disclosed Alexa Rank| 370236 VIP website status:| No...

zabzaa.com IFRAME Injection vulnerability

Open Bug Bounty ID: OBB-200440 Description| Value ---|--- Affected Website:| zabzaa.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Iframe Injection / CWE-79 CVSSv3 Score:| 6.1...

kranten.com IFRAME Injection vulnerability

Open Bug Bounty ID: OBB-199976 Description| Value ---|--- Affected Website:| kranten.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Iframe Injection / CWE-79 CVSSv3 Score:| 6.1...

xemngay.com IFRAME Injection vulnerability

Vulnerable URL: http://www.xemngay.com/showNew.aspx?u=https://www.openbugbounty.org Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| IFRAME Injection Vulnerability status:| Publicly disclosed Alexa Rank| 285913 VIP website status:| No Check...

garnier.fr IFRAME Injection vulnerability

Vulnerable URL: http://www.garnier.fr/recherche?searchsite=%22%3E%3C/script%3E%3Ciframe%20src=https://openbugbounty.org%3E Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| IFRAME Injection Vulnerability status:| Publicly disclosed Alexa Rank| 270491 VIP website status:| ...

screenrant.com XSS vulnerability

Vulnerable URL: http://screenrant.com/wp-admin/01tempsharefolder/controllers/brightcoveVideoHelper/iframedVideoPlayer.php?videoId=" Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 2787 VIP website status:| Yes...

Microsoft Internet Explorer 9 - IEFRAME CMarkup::Remove­Pointer­Pos Use-After-Free (MS13-055)

Microsoft Internet Explorer 9 - IEFRAME CMarkup::Remove­Pointer­Pos Use-After-Free MS13-055 document.add­Event­Listener"load", function document.document­Element.remove­Nodetrue; , true; document.add­Event­Listener"DOMNode­Removed", function document.write""; , true; !-- Time-line Sometime in...

search.url.com IFRAME Injection vulnerability

Open Bug Bounty ID: OBB-197466 Description| Value ---|--- Affected Website:| search.url.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Iframe Injection / CWE-79 CVSSv3 Score:| 6.1...

chromium-browser: csp referrer disclosure

Blink in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android incorrectly handled iframes, which allowed a remote attacker to bypass a no-referrer policy via a crafted HTML page...

UBUNTU-CVE-2016-9650

Blink in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android incorrectly handled iframes, which allowed a remote attacker to bypass a no-referrer policy via a crafted HTML page...

korea.ac.kr IFRAME Injection vulnerability

Vulnerable URL: http://www.korea.ac.kr/jsp/sugang/NoticeFrame.jsp?url=https://www.openbugbounty.org=anam Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| IFRAME Injection Vulnerability status:| Publicly disclosed Alexa Rank| 13738 VIP websi...

library.tc.columbia.edu IFRAME Injection vulnerability

Vulnerable URL: http://library.tc.columbia.edu/frame.php?dest=https%3A%2F%2Fwww.openbugbounty.org Details: Description| Value ---|--- Patched:| Yes, at 28.07.2017 Latest check for patch:| 28.07.2017 13:05 GMT Vulnerability type:| IFRAME Injection Vulnerability status:| Publicly disclosed Alexa...

openoffice.us.com IFRAME Injection vulnerability

Vulnerable URL: http://www.openoffice.us.com/openoffice/offsite.php?dest=https://www.openbugbounty.org Details: Description| Value ---|--- Patched:| Yes, at 19.12.2016 Latest check for patch:| 19.12.2016 16:32 GMT Vulnerability type:| IFRAME Injection Vulnerability status:| Publicly disclosed Ale...

truste.com IFRAME Injection vulnerability

Vulnerable URL: https://www.truste.com/window.php?url=https://www.openbugbounty.org Details: Description| Value ---|--- Patched:| Yes, at 28.07.2017 Latest check for patch:| 28.07.2017 13:04 GMT Vulnerability type:| IFRAME Injection Vulnerability status:| Publicly disclosed Alexa Rank| 19819 VIP...