U.S. Govt. Apps Bundled Russian Code With Ties to Mobile Malware Developer

A recent scoop by Reuters revealed that mobile apps for the U.S. Army and the Centers for Disease Control and Prevention CDC were integrating software that sends visitor data to a Russian company called Pushwoosh, which claims to be based in the United States. But that story omitted an important...

Pushwoosh: Cleartext Password returned in JSON response

Password was returned in the JSON response For changing of password, which could be recovered by accessing the firefox.exe memory dump. The password string is persistent in the RAM even after restarting Firefox application until you restart the computer. Refer to the .docx for more information...

Pushwoosh: Clickjacking

Steps to reproduce: create index.html file with following content: Open index.html in browser Actual result: Pushwoosh viewed in iframe. Expected result: do not allow clickjacking Root cause: var isInIFrame = function try return window.self !== window.top; catch e return true; ;...

Pushwoosh: Publicy accessible IDRAC instance at api-m.inapp.pushwoosh.com

Hi. I discovered a publicy accessible IDRAC instance at api-m.inapp.pushwoosh.com. I know this subdomain is out of scope, but still consider to report it. Since default credentials root/calvin not work, there are no security risks for now, but so far the instance is available to public, in the...

Pushwoosh: Read Application Name , Subscribers Count

Attacker was able to read app name and subscribers count...

Pushwoosh: Nginx version disclosure via response header

Nginx version disclosure Non-critical , a little information disclosure...

Pushwoosh: Administrator Access To Management Console

Malicious user had the administrator access to RabbitMQ...

Pushwoosh: Bypass the resend limit in Send Invites

Attacker was able to bypass the limit in user invites...

Pushwoosh: Password Forgot/Password Reset Request Bug

Password Forgot/Password Reset Request Bug...

Pushwoosh: Unsecured Grafana instance

Unsecured Grafana instance...

Pushwoosh: Nginx server version disclosure

Design Issue, Information Disclosure, Low Severity...

Pushwoosh: Reflected Xss on

Hi here is a reflected xss on your main domain poc : http://www.pushwoosh.com/.xml/alert1...

Pushwoosh: htaccess file is accesible

Design Issue, Information Disclosure, Low Severity. Non-critical , a little information disclosure...

Pushwoosh: Spoof Email with Hyperlink Injection via Invites functionality

Email Spoofing via hyperlink injection. Design Issue, Missing Best Practice, Low severity...

pushwoosh.com XSS vulnerability

Vulnerable URL: https://www.pushwoosh.com/wp-includes/js/mediaelement/flashmediaelement.swf?jsinitfunctio%gn=alert%60openbugbounty%60 Details: Description| Value ---|--- Patched:| Yes, at 29.10.2016 Latest check for patch:| 29.10.2016 11:24 GMT Vulnerability type:| XSS Vulnerability status:|...

Pushwoosh: Cross-Site Scripting Stored On Rich Media

Hi Team Security Pushwoosh I'm Found Bug Cross-site Scripting Stored in On Rich Media . Steps to verify --- . Login as Attacker . Go To Rich Media and Create New Media . Fill Name and Choose Zip Upload . Upload index.zip in Attachments . Cick Save and Enter to Media Waiting Page to Reload Payload...

Pushwoosh: Stored XSS in Filters

Stored XSS at send push form...