43 matches found
EUVD-2009-0341
Malware in sbrugna...
EUVD-2009-0339
Malware in sbrugna...
EUVD-2009-0338
Malware in sbrugna...
katyfootandankle.com Cross Site Scripting vulnerability OBB-2534922
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
katydigestivecenter.com Cross Site Scripting vulnerability OBB-2534726
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
teenvogue.com XSS vulnerability
Open Bug Bounty ID: OBB-488689 Description| Value ---|--- Affected Website:| teenvogue.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
PianoPlay: KATY - Dangerous filesystem permissions, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application PianoPlay: KATY published at the 'play' market has multiple vulnerabilities...
Katy Perry Pop - Customized SSL, Dangerous filesystem permissions, Exported ContentProvider vulnerabilities
HackApp vulnerability scanner discovered that application Katy Perry Pop published at the 'play' market has multiple vulnerabilities...
linux/x86 cp /bin/sh /tmp/katy ; chmod 4555 katy 126 bytes
No description provided by source. / Linux/x86 /bin/cp /bin/sh /tmp/katy ; chmod 4555 /tmp/sh using fork / include stdio.h char shellcode = \xeb\x5e\x5f\x31\xc0\x88\x47\x07\x88\x47\x0f\x88\x47\x19\x89\x7f \x1a\x8d\x77\x08\x89\x77\x1e\x31\xf6\x8d\x77\x10\x89\x77\x22\x89...
linux/x86 cp /bin/sh /tmp/katy
No description provided by source. / Linux/x86 /bin/cp /bin/sh /tmp/katy ; chmod 4555 /tmp/sh using fork / include stdio.h char shellcode = "\xeb\x5e\x5f\x31\xc0\x88\x47\x07\x88\x47\x0f\x88\x47\x19\x89\x7f" "\x1a\x8d\x77\x08\x89\x77\x1e\x31\xf6\x8d\x77\x10\x89\x77\x22\x89"...
CVE-2009-0337
SQL injection vulnerability in index.asp in Katy Whitton BlogIt! allows remote attackers to execute arbitrary SQL commands via the 1 month and 2 year parameters. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2009-0336
Katy Whitton BlogIt! stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file containing user credentials via a direct request for database/Blog.mdb. NOTE: some of these details are obtained from third party...
CVE-2009-0334
SQL injection vulnerability in index.asp in Katy Whitton BlogIt! allows remote attackers to execute arbitrary SQL commands via the day parameter in an archive action...
CVE-2009-0335
Cross-site scripting XSS vulnerability in index.asp in Katy Whitton BlogIt! allows remote attackers to inject arbitrary web script or HTML via the view parameter...
Sql injection
SQL injection vulnerability in index.asp in Katy Whitton BlogIt! allows remote attackers to execute arbitrary SQL commands via the 1 month and 2 year parameters. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
Cross site scripting
Cross-site scripting XSS vulnerability in index.asp in Katy Whitton BlogIt! allows remote attackers to inject arbitrary web script or HTML via the view parameter...
Sql injection
SQL injection vulnerability in index.asp in Katy Whitton BlogIt! allows remote attackers to execute arbitrary SQL commands via the day parameter in an archive action...
CVE-2009-0335
CVE-2009-0335 is an XSS vulnerability in Katy Whitton BlogIt! (index.asp) exploitable via the view parameter. Affected component is the BlogIt! index page; root cause is input handling that allows arbitrary web script/HTML to be injected. The NVD entry lists a CVSS v2 base score of 4.3 (Medium) w...
CVE-2009-0336
Katy Whitton BlogIt! stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file containing user credentials via a direct request for database/Blog.mdb. NOTE: some of these details are obtained from third party...
CVE-2009-0337
CVE-2009-0337 affects the BlogIt! application by Katy Whitton, where the vulnerable entry point is index.asp. The issue arises from SQL injection via the (1) month and (2) year parameters, allowing remote attackers to execute arbitrary SQL commands. This is a network-accessible vulnerability with...