8 matches found
mantis -- multiple vulnerabilities
Mantis 2.25.6 release reports: Security and maintenance release 0031086: Private issue summary disclosure CVE-2023-22476 0030772: Update bundled moment.js to 2.29.4 CVE-2022-31129 0030791: Allow adding relation type noopener/noreferrer to outgoing links...
HackerOne: Reverse Tabnabbing Vulnerability in Outgoing Links
The external links in the reports are not properly handled, using the issue the links can access the openers and replace them with some other page. To Verify the issue, just go to any report which do have any external link and inspect the proceed button. Where the issue lies: rel="noreferrer"...
MapsMarker.com e.U.: facebook button URL should be HTTPS
hi team .. l click to facebook button on https://www.mapsmarker.com/ outgoing links not use HTTPS please fix soon This is just for the awareness to use HTTPS everywhere, even for outgoing links - where it's possible. Treat this report with some salt, not as in hashes. POC screenshot...
Legal Robot: Venturebeat.com URL should be HTTPS
This is just for the awareness to use HTTPS everywhere, even for outgoing links - where it's possible. Navigate to: https://www.legalrobot-uat.com/ Example page In the lower part where you find the observer.com Link: observer redirect to HTTPS after click, but cookie is sent on the network before...
Legal Robot: Futureoflife organization URL should be HTTPS
SUMMARY This is just for the awareness to use HTTPS everywhere, even for outgoing links - where it's possible. Treat this report with some salt, not as in hashes. Navigate to: https://www.legalrobot-uat.com/faq/ futureoflife organization URL redirect to HTTPS after click, but cookie is sent on th...
Legal Robot: observer.com URL should HTTPS
Summary This is just for the awareness to use HTTPS everywhere, even for outgoing links - where it's possible. Treat this report with some salt, not as in hashes. Navigate to: https://www.legalrobot-uat.com/press/ Example page In the lower part where you find the observer.com Link: observer...
Hot Links SQL-PHP 3 (report.php) Multiple Vulnerabilities
No description provided by source. /\ \ /\ \ \ /\ /\ \ //\ \ \ \ \ \ \ \ \ \ \ /',\ \ \ \ \ \ \ \ /\ /'\ /'\ \ \ \ /\ ,\ /, \ \ \ \ ,\ \ \ \ \ // / // /\//\///\/\ \ \/\ // // // //////// //// security breakd0wn! Title: Hot Links SQL-PHP 3 report.php Multiple...
Hot Links SQL-PHP 3 (report.php) Multiple Vulnerabilities
Exploit for unknown platform in category web applications ========================================================= Hot Links SQL-PHP 3 report.php Multiple Vulnerabilities ========================================================= 1. Information Hot Links was the initial script developed by Mr CGI...