CVE-2024-25858

In Foxit PDF Reader before 2024.1 and PDF Editor before 2024.1, code execution via JavaScript could occur because of an unoptimized prompt message for users to review parameters of commands...

home.uchicago.edu XSS vulnerability

Open Bug Bounty ID: OBB-332125 Description| Value ---|--- Affected Website:| home.uchicago.edu Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

apps.astrocartomanti.it XSS vulnerability

Vulnerable URL: http://apps.astrocartomanti.it/cartomanzia/statocarto2.php?jsoncallback=prompt/OPENBUGBOUNTY/...

Phishing attack possible with a delayed JavaScript prompt

A malicious page can be crafted to send the userto his banking site, and shortly afterwardsdisplay a dialog enticing the user to type inhis bank login credentials.The dialog will appear in front of the bankingpage, while the window it really belongs to willbe hidden. If the timing and context is...

Phishing attack possible with a delayed JavaScript prompt – Opera Security Advisories

Phishing attack possible with a delayed JavaScript prompt – Opera Security Advisories OPCOM Team | January 5, 2005 Severity: Moderate/low Problem description A malicious page can be crafted to send the userto his banking site, and shortly afterwardsdisplay a dialog enticing the user to type inhis...