144 matches found
Informatica: [informatica.com]- Information Disclosure
Researcher has identified and reported an information disclosure vulnerability in Informatica's website and helped us in resolving the issue...
Informatica: [informatica.com]- Cross Site scripting
The researcher was able to find a reflected XSS in informatica.com...
Informatica: Stored XSS via Discussion Title and Send as Email attribute in [marketplace.informatica.com]
POC === 1. Under "Your Stuff" choose to "Create a Discussion/Ask a question" 2. Choose a space to submit your discussion/question. Any space will do. 3. Title your discussion with the payload " 4. Choose "Post message" to publish. 5. View the message as any user. Under "Actions" choose to "Send a...
careers.informatica.com XSS vulnerability
Vulnerable URL: https://careers.informatica.com/search-results?keywords=/alert/OPENBUGBOUNTY/;/ Details: Description| Value ---|--- Patched:| Yes, at 18.09.2017 Latest check for patch:| 18.09.2017 09:56 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / N...
Informatica: [ipm.informatica.com]- Broken Authentication
The Researcher was able to visit the internal pages of the application by changing few parameters in the URL. We have identified it as broken authenticated page display. Due to the EOL of the application, it was decommissioned. i was able to bypass authentication on one of the internal app. for...
network-test.informatica.com Open Redirect vulnerability
Vulnerable URL: https://network-test.informatica.com//.org Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website status:| No Coordinated...
Informatica: [marketplace.informatica.com] Search XSS
The search query parameter is put into Javascript to set the localStorage item: https://marketplace.informatica.com/search-solr.jspa?q=%foo% javascript localStorage.setItem"searchTerm", "%foo%"; Attempts to inject XSS payloads are blocked by redirection that removes special chars from the URL: ht...
network.informatica.com Open Redirect vulnerability
Vulnerable URL: https://network.informatica.com//.org Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website status:| No Coordinated Disclosu...
store.informatica.com Open Redirect vulnerability
Vulnerable URL: https://store.informatica.com/store/infamp/enUS/RedirectToLandingPage/pgm.95708900?landingpage=http%3A%2F%2Fwww.openbugbounty.org Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank| Unknown ...
careers.informatica.com XSS vulnerability
Vulnerable URL: https://careers.informatica.com/search-results?keywords=%22%3E%3C/script%3E%3Cscript%3Ealert%27OPENBUGBOUNTY%27%3C/script%3E Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculate...
Informatica: [marketplace.informatica.com] Profile stored XSS
The user name and lastname are inserted into JS with quotes non-escaped: javascript var pageNameDTM = "%name% %lastname%".replace/^a-zA-Z0-9 /g, "".replace/ +/g, " "; PoC: 1. Log into your account 2. Set your name and lastname to "-alertdocument.domain-" 3. Open your profile page...
Informatica: [careers.informatica.com] XSS on "isJTN"
hi , i found XSS bug on parameter "isJTN=" at careers.informatica.com give you ability to run java script code tested on firefox 50.0.2 also on old version of google chrome in the last version , but if try this bug in chrome last version you will got a source code displayed on page with out run c...
Informatica: [network.informatica.com] The login form XSS via the referer value
The referer parameter value https://network.informatica.com/login!input.jspa?referer=%ref% is inserted into the Javascript code javascript if pageURL.indexOf"login!input.jspa?referer=" -1 || pageURL.indexOf"login.jspa?referer=" -1 finalPageURL='%ref%'; and used in further redirection without...
Informatica: [kb.informatica.com] DOM based XSS in the bindBreadCrumb function
The bindBreadCrumb function, which is called after the document is loaded: javascript $document.readyfunction bindBreadCrumb; ; has the following insecure link assignments, that use non-encoded URL values: javascript strChild = "Search Results"; strChild = "Search Results"; strChild = "Search...
Informatica: [marketplace.informatica.com] Persistent XSS through document title
Document titles are not properly escaped before being printed on https://marketplace.informatica.com/docs/ . By including a payload in a document title, an attacker can create a document with a persistent XSS vector which executes for anyone viewing the document page. Proof of concept === The...
Informatica: [afocusp.informatica.com] Sql injection afocusp.informatica.com:37777
hi !There is another sql injection on host afocusp.informatica.com:37777 POC version http://afocusp.informatica.com:37777/pls/apex/f?;OWAUTIL.CELLSPRINT:1;--=select++from+v$version hostname of the database server psvlxtdapp1.inf...
Informatica: [parc.informatica.com] Reflected Cross Site Scripting and Open Redirect
Hi ! I just want to report you a vulnerability in your subdomain ,,parc'' Description In this link https://parc.informatica.com/partners/apex/Cloudchat?endpoint= the vulnerable parameter is ,,endpoint''. Once the parameter takes the value of a XSS vector or a website link the code is executed aft...
Informatica: [ipm.informatica.com] Sql injection Oracle
Hi host ipm.informatica.com is vulnerable to sql injection attacks the web application does not produce sufficient validation on user input. POC detection request 1 http://ipm.informatica.com/pls/apex/f?1'=1 response 500 HTTP/1.1 500 Internal Server Error request 2...
Informatica: [kb.informatica.com] Stored XSS
kb.informatica.org is vulnerable to stored XSS as it stores user input in users' sessions, then reflects this input back inside a JavaScript block without adequate escaping. To replicate this issue, first store the payload in your session by visiting:...
Informatica: [alpha.informatica.com] Expensive DOMXSS
Hi again, The page at https://alpha.informatica.com/assessmentBase/assessment.html contains the following JavaScript: var baseHeaderElement = ''; $'head'.appendbaseHeaderElement; An attacker can exploit this using a protocol-relative URL. In Chrome, open the following URL and either proxy though...