34 matches found
diomedia.com Cross Site Scripting vulnerability OBB-2160270
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
loudounyellowcab.com Improper Access Control vulnerability OBB-2160024
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
mail.ausante.com Improper Access Control vulnerability OBB-2160023
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
lastminutethredbo.com Improper Access Control vulnerability OBB-2159974
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
lawyersclubindia.com Cross Site Scripting vulnerability OBB-2142021
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
you-nik.com XSS vulnerability
Vulnerable URL: http://www.you-nik.com/search.php?kwds=%3E%3Csvg/onload=alert/OPENBUGBOUNTY/%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 4844096 VIP website status:| No Check...
Disqus for Wordpress 2.7.5 Admin Stored CSRF and XSS
No description provided by source. !-- Exploit for Disqus for Wordpress admin stored CSRF+XSS up to v2.7.5 Blog post explainer: https://www.nikcub.com/posts/multiple-vulnerabilities-in-disqus-wordpress-plugin/ 12th August 2014 Nik Cubrilovic - www.nikcub.com Most of these params are...
WordPress Plugin Disqus 2.7.5 - Cross-Site Request Forgery (Admin Persistent) Cross-Site Scripting
WordPress Plugin Disqus 2.7.5 - Cross-Site Request Forgery Admin Persistent Cross-Site Scripting disqus csrf reset -- -- alert1;' /...
InterTech (etemplaite.php) Sql Injection Vulnerability
Exploit for php platform in category web applications ====================================================== InterTech etemplaite.php Sql Injection Vulnerability ====================================================== 010101010101010101010101010101010101010101010101010101010 0 0 1 Iranian Datacode...
CVE-2008-1638
Nik Sharpener Pro, possibly 2.0, uses world-writable permissions for plug-in files, which allows local users to gain privileges by replacing a plug-in with a Trojan horse...
Code injection
Nik Sharpener Pro, possibly 2.0, uses world-writable permissions for plug-in files, which allows local users to gain privileges by replacing a plug-in with a Trojan horse...
CVE-2008-1638
CVE-2008-1638 affects Nik Sharpener Pro (possibly v2.0) where plug‑in files are world-writable. This enables local users to replace a plug‑in with a Trojan horse, potentially achieving privilege escalation. The provided sources confirm the vulnerability mechanism but do not specify affected build...
CVE-2008-1638
Nik Sharpener Pro, possibly 2.0, uses world-writable permissions for plug-in files, which allows local users to gain privileges by replacing a plug-in with a Trojan horse...
Nik Software Sharpener Pro vulnerable to privilege escalation
Overview The Nik Software Shapener Pro installs files with insecure permissions, which may allow a local attacker to elevate privileges. Description Nik Software Sharpener Pro is an Adobe Photoshop plug-in that provides image sharpening capabilities. The Nik Software Sharpener Pro installer sets...