7 matches found
PT-2021-05: Lack of Amount/CVMResults fields checking for Public Transport Schemes
Mobile wallets allow to charge one amount within the Public Transport Scheme' cryptogram and charge a different amount using any payment terminal in the end. This is due to EMV standards and is a requirement for modern payments when the price shown on the terminal is different from the actual...
VIDEO: Carbon Black Hackathon Competition Features MBTA Charlie Tracker
The Carbon Black R&D team just finished its third quarterly “hackathon” – a block of free time completely dedicated to collaboration and innovation. Projects can be anything a submitting team desires and submission do not need to be related to a product or even Carbon Black itself. The main purpo...
Geldkarte - transaktionsid Cross Site Scripting Vulnerability
Document Title: =============== Geldkarte - transaktionsid Cross Site Scripting Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2118 Release Date: ============= 2018-02-20 Vulnerability Laboratory ID VL-ID:...
OV-chipkaart: Personal data of all Dutch public transport cards ("OV-Chipkaart") accessible
███████████████████████████████...
swisspublictransport.ch XSS vulnerability
Vulnerable URL: http://www.swisspublictransport.ch/en/weitere-links/mediacorner-en/media-texts/media-texts-premium-panorama-trains.html/%22--!%3E%3CSvg/Onload=confirm'OPENBUGBOUNTY'%3E%22 Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicl...
Public Transport Simulator '15 - Customized SSL, WebView SSL handling enabled, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Public Transport Simulator '15 published at the 'play' market has multiple vulnerabilities...
Amsterdam Public Transport - Dangerous filesystem permissions, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Amsterdam Public Transport published at the 'play' market has multiple vulnerabilities...