Design/Logic Flaw

Eclair through 0.3 allows attackers to trigger loss of funds because of Incorrect Access Control. NOTE: README.md states "it is beta-quality software and don't put too much money in it."...

HostBill Email Templates Configuration Page跨站请求伪造漏洞

Bugtraq ID:66009 HostBill是国外Quality Software开发的虚拟主机、VPS云主机、独立主机、域名及附加产品的管理系统。 HostBill Email模版配置页面存在跨站请求伪造漏洞，允许远程攻击者构建恶意URI，诱使用户解析，可以目标用户上下文执行恶意操作。 0 HostBill 厂商补丁： Zimbra ----- HostBill 2014-03-03已经修复该漏洞，建议用户下载更新： http://hostbillapp.com/changelog...