warsame.pro XSS vulnerability

Vulnerable URL: http://warsame.pro/minitube/found.php?q=%22%3E%3Cimg%20src=x%20onerror=javascript:prompt%22OPENBUGBOUNTY%22%3E Details: Description| Value ---|--- Patched:| Yes, at 17.07.2017 Latest check for patch:| 17.07.2017 13:29 GMT Vulnerability type:| XSS Vulnerability status:| Publicly...

GLSA-201203-18 : Minitube: Insecure temporary file usage

The remote host is affected by the vulnerability described in GLSA-201203-18 Minitube: Insecure temporary file usage Tom Pruina reported that Minitube does not handle temporary files securely. Impact : A local attacker could perform symlink attacks to overwrite arbitrary files with the privileges...

Gentoo Security Advisory GLSA 201203-18 (Minitube)

The remote host is missing updates announced in advisory GLSA 201203-18. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Gentoo Security Advisory GLSA 201203-18 (Minitube)

The remote host is missing updates announced in advisory GLSA 201203-18. SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...

Minitube: Insecure temporary file usage

Background Minitube is a Qt4 YouTube desktop client. Description Tomáš Pružina reported that Minitube does not handle temporary files securely. Impact A local attacker could perform symlink attacks to overwrite arbitrary files with the privileges of the user running the application. Workaround...