7 matches found
portal.cparaiso.com.br Cross Site Scripting vulnerability OBB-3765676
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
studentportal.mku.ac.ke Cross Site Scripting vulnerability OBB-3106881
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Cross site scripting
SAP NetWeaver Enterprise Portal - versions 7.30, 7.31, 7.40, 7.50, does not sufficiently encode user-controlled inputs, resulting in reflected Cross-Site Scripting XSS vulnerability.This reflected cross-site scripting attack can be used to non-permanently deface or modify displayed content of...
portal.eac.com.br Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-969278 Security Researcher naldron Helped patch 13 vulnerabilities Received 1 Coordinated Disclosure badges , a holder of 1 badges for responsible and coordinated disclosure, found a security vulnerability affecting portal.eac.com.br website and its users. Following...
Jobs2Careers / Coroflot Clone SQL Injection
Exploit Title: Jobs2Careers / Coroflot Clone - SQL Injection Date: 2017-11-30 Exploit Author: 8bitsec Vendor Homepage: http://www.i-netsolution.com/ Software Link: http://www.i-netsolution.com/product/jobs2careers-coroflot-jobs-clone-script/ Version: 30 November 17 Tested on: Kali Linux 2.0 | Mac...
某门户网站系统存在两处任意文件下载漏洞
简要描述: 两处。 详细说明: 看样式对比,应该是官网这个产品: http://www.threeoa.com/product/501.html 案例应该还是不少的! 第一处下载: http://www.jmsyz.net/eeoaftp/downloadFile.action?path=WEB-INF/web.xml http://jdyz.ijd.cn/eeoaftp/downloadFile.action?path=WEB-INF/web.xml http://www.wxxqml.com/eeoaftp/downloadFile.action?path=WEB-INF/web.x...
In-Portal 4.3.1 Arbitrary Shell Upload Vulnerability
No description provided by source. ======================================================= +++++++++++++++++++ information +++++++++++++++++++++++ ======================================================= + Script :In-Portal v 4.3.1 Shell Upload Vulnerability + D0rk : Powered by In-portal ®...