Socid-Extractor - Extract Accounts Info From Personal Pages On Various Sites For OSINT Purpose

Extract information about a user from profile webpages / API responses and save it in machine-readable format. Usage As a command-line tool: $ socidextractor --url https://www.deviantart.com/muse1908 country: France createdat: 2005-06-16 18:17:41 gender: female username: Muse1908 website:...

okru.ru Cross Site Scripting vulnerability OBB-2128370

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

ok.ru: Хранимая XSS в личных сообщениях новое место

Stored XSS in chat title at https://ok.ru/messages...

OK.RU - Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application OK.RU published at the 'play' market has multiple vulnerabilities...

ok.ru: [insideok.ru] Database Dump

http://insideok.ru/db.sql Внутри - учётки админов на 2016 год. -- Хост: localhost -- Время создания: Сен 03 2016 г., 12:00 -- Версия сервера: 5.5.47-cll-lve -- Версия PHP: 5.4.45 Структура таблицы users CREATE TABLE IF NOT EXISTS users id int11 unsigned NOT NULL, █████ ███████ ███████ ██████████...

ok.ru: Cross site scripting On api Calculator API requests

API request calculator at https://apiok.ru/wiki/pages/viewpage.action?pageId=75989046 did not validate applicationsecretkey and sessionsecretkey values, which resulted in XSS...

ok.ru: cross siite scripting in the blog

@cyberboy reported the following issue: Well your domain http://blog.ok.ru/ gets redirected to http://insideok.ru which seems to be your domain as well . I confirmed that by making a whois check up. The search parameter has a reflected cross site scripting vulnerability in it The direct URL of th...