6 matches found
CVE-2023-30857 @aedart/support possibly vulnerable to prototype pollution in metadata record, when using meta decorator
@aedart/support is the support package for Ion, a monorepo for JavaScript/TypeScript packages. Prior to version 0.6.1, there is a possible prototype pollution issue for the MetadataRecord, when merged with a base class' metadata object, in meta decorator from the @aedart/support package. The...
perthcurls.com.au Cross Site Scripting vulnerability OBB-2835690
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
focusframemedia.com Cross Site Scripting vulnerability OBB-2384438
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
All Vulnerabilities for autodiscover.dpme.gov.za Patched via Open Bug Bounty
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| autodiscover.dpme.gov.za ---|--- Open B...
caliproimmobiliare.it Cross Site Scripting vulnerability OBB-1249316
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
linija-svitla.ua XSS vulnerability
Vulnerable URL: http://www.linija-svitla.ua/search.htm?searchstr='"onfocus=alert/XSSposed/ autofocus= "'/ Details: Description| Value ---|--- Patched:| Yes, at 25.07.2017 Latest check for patch:| 25.07.2017 14:00 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank|...