149 matches found
noeallatotthon.hu XSS vulnerability
Open Bug Bounty ID: OBB-549222 Description| Value ---|--- Affected Website:| noeallatotthon.hu Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
checklist.com XSS vulnerability
Open Bug Bounty ID: OBB-548615 Description| Value ---|--- Affected Website:| checklist.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
sieberz.sk XSS vulnerability
Open Bug Bounty ID: OBB-539425 Description| Value ---|--- Affected Website:| sieberz.sk Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
amazone.de XSS vulnerability
Open Bug Bounty ID: OBB-516035 Description| Value ---|--- Affected Website:| amazone.de Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Disclosure Standard:| Coordinated Disclosure based on...
x123movies.to XSS vulnerability
Open Bug Bounty ID: OBB-483826 Description| Value ---|--- Affected Website:| x123movies.to Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Disclosure Standard:| Coordinated Disclosure based...
automechanikadubai.com XSS vulnerability
Open Bug Bounty ID: OBB-447148 Description| Value ---|--- Affected Website:| automechanikadubai.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention...
angusmackinnon.co.uk XSS vulnerability
Open Bug Bounty ID: OBB-427263 Description| Value ---|--- Affected Website:| angusmackinnon.co.uk Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention...
sportcalendar.com XSS vulnerability
Open Bug Bounty ID: OBB-388716 Description| Value ---|--- Affected Website:| sportcalendar.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat...
WebKit - WebCore::InputType::element Use-After-Free Exploit
Exploit for multiple platform in category dos / poc var runcount = 0; function go runcount++; ifruncount 2 return; i.type = "foo"; i.select; i.type = "search"; document.onsearch = document.body.onload; document.execCommand"insertHTML", false, ""; !--...
Khan Academy: XSS through document projects
Hello, I'm Ethan Luis McDonough @elmt2 on Khan Academy, and I found a way to inject scripts into document projects. Since KA document projects output HTML, I can edit the PUT request that updates projects https://www.khanacademy.org/api/internal/scratchpads/ID and inject JavaScript code inside an...
sport.tv2.dk XSS vulnerability
Vulnerable URL: http://sport.tv2.dk/2017-06-29-wozniacki-halep/%3C/script%3E%3Csvg/onload=prompt%60openbugbounty%60%3E Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website status:|...
CVE-2017-9306
inc/SP/Html/Html.class.php in sysPass 2.1.9 allows remote attackers to bypass the XSS filter, as demonstrated by use of an "svg/onload=" substring instead of an "svg onload=" substring...
afzuigkapshop.be XSS vulnerability
Open Bug Bounty ID: OBB-178958 Description| Value ---|--- Affected Website:| afzuigkapshop.be Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
ovenstore.be XSS vulnerability
Vulnerable URL: http://www.ovenstore.be/sw/typeahead?query=%22%3E%3Csvg%2Fonload%3Dprompt%2Fxssposed%2F%3E Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 2912400 VIP website status:| No Check ovenstore.be SSL...
кто.рф XSS vulnerability
Vulnerable URL: http://кто.рф/index.php?domain=%27%3E%3Csvg%20onload=alert%28%27XSSPOSED%27%29%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 5657658 Google Pagerank| 5 VIP...
email.hbr.org XSS vulnerability
Vulnerable URL: https://email.hbr.org/preference-center?email=%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated...
crystalballroompdx.com XSS vulnerability
Open Bug Bounty ID: OBB-108159 Description| Value ---|--- Affected Website:| crystalballroompdx.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention...
parkerpen.com XSS vulnerability
Vulnerable URL: http://www.parkerpen.com/webapp/wcs/stores/servlet/SearchDisplay?storeId=12002=-11=12002=asd%22--%3E%3Csvg%20onload=alert%28%27XSSPOSED%27%29%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 25.07.2017 Vulnerability type:| XSS Vulnerability status:|...
justdial.com XSS vulnerability
Vulnerable URL: http://www.justdial.com/Pune%22%3E%3Ciframe/onload=alert%28/XSSPOSED/%29%3E/rk Details: Description| Value ---|--- Patched:| Yes, at 03.07.2017 Latest check for patch:| 03.07.2017 09:09 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 470 Google...
Opera Web Browser 7.5x IFrame OnLoad Address Bar URL Obfuscation Weakness
No description provided by source. source: http://www.securityfocus.com/bid/10679/info Opera Web Browser is prone to a security weakness that may permit malicious web pages to spoof address bar information. It is currently not known if this issue is related to the Opera Web Browser Address Bar...