Cabot 0.11.12 Cross Site Scripting

Exploit Title: Cabot 0.11.12 - Persistent Cross-Site Scripting Date: 2020-09-06 Exploit Author: Abhiram V Vendor Homepage: https://cabotapp.com/ Software Link: https://github.com/arachnys/cabot Version: 0.11.12 Tested on: Ubuntu Linux Introduction Cabot is a free, open-source, self-hosted...

Pornhub: Disclosure of private photos/albums - http://www.pornhub.com/album/show_image_box

An endpoint was identified by the researcher allowing private user albums/photos to be viewed. An endpoint allowing to view any private albums/photos was identified. Check out the infrastructure monitoring platform BugLabs.me for bounty hunters - https://buglabs.me...