Tomato Free Fiction App Has Denial of Service Vulnerability

Tomato Free Novels app is a novel reader that focuses on genuine novels. Tomato Free Novels app has a denial of service vulnerability where an attacker uses a tool to build malformed serialized Intent data to launch the app causing it to crash...

pixiv: Open redirect protection (https://www.pixiv.net/jump.php) is broken for novels

Summary: I found that pixiv has a open redirect protection, any external link in illustration is converted to https://www.pixiv.net/jump.php?. For example https://i3mx4usociis8twimpcu2ty0erkh86.burpcollaborator.net/abc in https://www.pixiv.net/memberillust.php?mode=medium&illustid=74148892 is...

dtv.de XSS vulnerability

Open Bug Bounty ID: OBB-656145 Description| Value ---|--- Affected Website:| dtv.de Open Bug Bounty Program:| View Open Bug Bounty Program Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N...

BLDCMS(the white boss novels) Getshell 0day EXP-vulnerability warning-the black bar safety net

Before the want to engage in a black wide Station found next to the station there is a station with a BLDCMS I download it to see.. found a getshellvulnerability Saying last night, Sunny day a small cast in 90sec found someone to put this getshell vulnerability analysis of the issue to the RUB...