PT-2024-17606 · WordPress · Property Hive Stamp Duty Calculator

Name of the Vulnerable Software and Affected Versions: Property Hive Stamp Duty Calculator plugin for WordPress versions up to, and including, 1.0.22 Description: The issue is related to Stored Cross-Site Scripting via the plugin's 'stamp duty calculator scotland' shortcode due to insufficient...

highlandclubscotland.co.uk Cross Site Scripting vulnerability OBB-3921708

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

INC Ransomware Hits NHS Scotland, Threatens Leak of 3TB Patient Data

By Waqas As seen by Hackread.com, the INC ransomware gang claims to have obtained patient records as part of their cyberattack. This is a post from HackRead.com Read the original post: INC Ransomware Hits NHS Scotland, Threatens Leak of 3TB Patient Data...

photos.of.scotland.free.fr Cross Site Scripting vulnerability OBB-3871395

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

scottishhousingnews.com Cross Site Scripting vulnerability OBB-3811123

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Covid app’s privacy information ruled not clear enough

The UKs data watchdog has issued a reprimand to both the Scottish government and NHS National Services Scotland about their Covid Status app. The Information Commissioners Office ICO urged both to act swiftly to address its concerns about the app that, according to the ICO, failed to provide peop...

scotlandinpicture.co.uk Cross Site Scripting vulnerability OBB-2153170

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

consultantsscotland.com Cross Site Scripting vulnerability OBB-2151999

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

scotland.anglican.org Improper Access Control vulnerability OBB-1395672

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

photography-scotland.com Cross Site Scripting vulnerability OBB-1305062

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

craftscotland.org Cross Site Scripting vulnerability OBB-1149885

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

epilepsyscotland.org.uk Cross Site Scripting vulnerability

Security Researcher 4NCURZE Helped patch 1397 vulnerabilities Received 7 Coordinated Disclosure badges Received 12 recommendations , a holder of 7 badges for responsible and coordinated disclosure, found a security vulnerability affecting epilepsyscotland.org.uk website and its users. Following...

sehd.scot.nhs.uk XSS vulnerability

Open Bug Bounty ID: OBB-454622 Description| Value ---|--- Affected Website:| sehd.scot.nhs.uk Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat...

mrweb.com XSS vulnerability

Vulnerable URL: http://www.mrweb.com/jobs/scotland/ Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 574090 VIP website status:| No Coordinated Disclosure Timeline: Description| Value ---|--- Vulnerability submitt...

citycarsscotland.co.uk XSS vulnerability

Open Bug Bounty ID: OBB-390941 Description| Value ---|--- Affected Website:| citycarsscotland.co.uk Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention...

knowledge.scot.nhs.uk Open Redirect vulnerability

Vulnerable URL: http://www.knowledge.scot.nhs.uk/Referrer.aspx?url=https://www.openbugbounty.org/ Details: Description| Value ---|--- Patched:| Yes, at 18.08.2017 Latest check for patch:| 18.08.2017 16:32 GMT Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank|...

www-scotland.k12.sd.us XSS vulnerability

Vulnerable URL: https://www-scotland.k12.sd.us/library/SitePages/Home.aspx?FollowSite=0=%27-confirm'OPENBUGBOUNTY'-%27 Details: Description| Value ---|--- Patched:| Yes, at 26.11.2017 Latest check for patch:| 26.11.2017 14:52 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed...

scotlandfuneralhome.com XSS vulnerability

Vulnerable URL: http://www.scotlandfuneralhome.com/runtime.php?NavigatorId=%22%3E%3Csvg/onload=prompt%28/OPENBUGBOUNTY/%29%3E Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 1164612 VIP website status:| No Check...

Scotland Yard Master - Base64 encoded String, WebView SSL handling enabled, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Scotland Yard Master published at the 'play' market has multiple vulnerabilities...

phrd.scot.nhs.uk XSS vulnerability

Vulnerable URL: http://www.phrd.scot.nhs.uk/HPAC/Search?sort=null=1=false=true=hpglasgow=%22%3E%3Csvg%2Fonload%3Dprompt%28%2Fxssposed%2F%29%3E=Match+all+words=0=0=GO Details: Description| Value ---|--- Patched:| Yes, at 26.07.2017 Latest check for patch:| 26.07.2017 15:58 GMT Vulnerability type:|...