usatoday.com Cross Site Scripting vulnerability

Security Researcher gdattacker Helped patch 143 vulnerabilities Received 3 Coordinated Disclosure badges Received 17 recommendations , a holder of 3 badges for responsible and coordinated disclosure, found a security vulnerability affecting usatoday.com website and its users. Following coordinate...

SUSE SLED15 / SLES15 Security Update : gcc7 (SUSE-SU-2019:2702-1)

This update for gcc7 to r275405 fixes the following issues : Security issues fixed : CVE-2019-14250: Fixed an integer overflow in binutils bsc1142649. CVE-2019-15847: Fixed an optimization in the POWER9 backend of gcc that could reduce the entropy of the random number generator bsc1149145...

10 Steps for Ransomware Protection

Just the thought of ransomware is enough to keep CISOs and security teams up at night. Victims are caught in an awful choice between paying a ransom to a criminal who may or may not release their captured network and data, or potentially spending millions of dollars to remove the ransomware on...

SUSE-SU-2019:2702-1 Security update for gcc7

This update for gcc7 to r275405 fixes the following issues: Security issues fixed: - CVE-2019-14250: Fixed an integer overflow in binutils bsc1142649. - CVE-2019-15847: Fixed an optimization in the POWER9 backend of gcc that could reduce the entropy of the random number generator bsc1149145...

nflcappers.net Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-995720 Security Researcher Mughiwara Helped patch 192 vulnerabilities Received 2 Coordinated Disclosure badges Received 4 recommendations , a holder of 2 badges for responsible and coordinated disclosure, found a security vulnerability affecting nflcappers.net website and...

zeanoit.fr Cross Site Scripting vulnerability

Security Researcher metamorfosec Helped patch 1914 vulnerabilities Received 9 Coordinated Disclosure badges Received 31 recommendations , a holder of 9 badges for responsible and coordinated disclosure, found a security vulnerability affecting zeanoit.fr website and its users. Following coordinat...

alimentation.bioetbienetre.fr Cross Site Scripting vulnerability

Security Researcher Rbcafe Helped patch 256 vulnerabilities Received 3 Coordinated Disclosure badges Received 7 recommendations , a holder of 3 badges for responsible and coordinated disclosure, found a security vulnerability affecting alimentation.bioetbienetre.fr website and its users. Followin...

Chrome 0-day exploit CVE-2019-13720 used in Operation WizardOpium

Multiple vulnerabilities have been discovered in Google Chrome, the most severe of which could allow for arbitrary code execution. Google Chrome is a web browser used to access the Internet. Successful exploitation of the most severe vulnerabilities could allow an attacker to execute arbitrary co...

U.S. Dept Of Defense: XXE with RCE potential on the https://█████████ (CVE-2017-3548)

The security vulnerability CVE-2017-3548 was identified in the Oracle PeopleSoft application. The vulnerability allowed for the execution of XML External Entity XXE attacks, which could potentially lead to remote code execution. A proof of concept was demonstrated that created a new service on th...

gkzmoney.ru Cross Site Scripting vulnerability

Security Researcher geeknik Helped patch 8635 vulnerabilities Received 8 Coordinated Disclosure badges Received 20 recommendations , a holder of 8 badges for responsible and coordinated disclosure, found a security vulnerability affecting gkzmoney.ru website and its users. Following coordinated a...

Patch Tuesday Lowdown, October 2019 Edition

On Tuesday Microsoft issued software updates to fix almost five dozen security problems in Windows and software designed to run on top of it. By most accounts, it's a relatively light patch batch this month. Here's a look at the highlights. Happily, only about 15 percent of the bugs patched this...

gettransfer.com Cross Site Scripting vulnerability

Security Researcher devl00p Helped patch 2581 vulnerabilities Received 10 Coordinated Disclosure badges Received 15 recommendations , a holder of 10 badges for responsible and coordinated disclosure, found a security vulnerability affecting gettransfer.com website and its users. Following...

www0.emyspot.com Cross Site Scripting vulnerability

Security Researcher Gh05tPT Helped patch 6846 vulnerabilities Received 10 Coordinated Disclosure badges Received 48 recommendations , a holder of 10 badges for responsible and coordinated disclosure, found a security vulnerability affecting www0.emyspot.com website and its users. Following...

CVE-2019-17366 - Citrix Application Delivery Management (ADM) Console Security Update

Description of Problem An authorisation bypass vulnerability was discovered in the Citrix Application Delivery Management ADM server. The vulnerability allows a Citrix ADM user with read-only privilege to access a managed instances with admin level permissions. The following deployment scenarios...

ssl.smn.gob.ar Cross Site Scripting vulnerability

Security Researcher devl00p Helped patch 2581 vulnerabilities Received 10 Coordinated Disclosure badges Received 15 recommendations , a holder of 10 badges for responsible and coordinated disclosure, found a security vulnerability affecting ssl.smn.gob.ar website and its users. Following...

macabi.com.ar Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-987996 Security Researcher g0bl1nsec Helped patch 3768 vulnerabilities Received 4 Coordinated Disclosure badges Received 3 recommendations , a holder of 4 badges for responsible and coordinated disclosure, found a security vulnerability affecting macabi.com.ar website and...

originalnitrika.cz Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-986755 Security Researcher AmineChabik Helped patch 63 vulnerabilities Received 2 Coordinated Disclosure badges Received 1 recommendations , a holder of 2 badges for responsible and coordinated disclosure, found a security vulnerability affecting originalnitrika.cz website...

hansbrings.com Cross Site Scripting vulnerability

Security Researcher Gh05tPT Helped patch 6836 vulnerabilities Received 10 Coordinated Disclosure badges Received 48 recommendations , a holder of 10 badges for responsible and coordinated disclosure, found a security vulnerability affecting hansbrings.com website and its users. Following...

scoopwhoop.com Open Redirect vulnerability

Security Researcher SHWETABHSUMAN Helped patch 109 vulnerabilities Received 3 Coordinated Disclosure badges , a holder of 3 badges for responsible and coordinated disclosure, found a security vulnerability affecting scoopwhoop.com website and its users. Following coordinated and responsible...

SQL Injection in Zingbox Inspector

An SQL injection vulnerability exists in the Zingbox Inspector management interface that allows for unsanitized data provided by an authenticated user to be passed from the web UI into the database. Ref: CVE-2019-15016 The vulnerability allows for authenticated users to pass unsanitized commands ...