11967 matches found
asuult.net Cross Site Scripting vulnerability OBB-1191444
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
Vulnerability Spotlight: Multiple vulnerabilities in Siemens LOGO! PLC
Alexander Perez-Palma of Cisco Talos and Emanuel Almeida of Cisco Systems discovered these vulnerabilities. Blog by Jon Munshaw. Cisco researchers recently discovered several vulnerabilities in the Siemens LOGO! PLC. The LOGO! allows users to control various automation projects, such as industria...
goodrecipe.net Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1186167 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website...
flive.tips Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1186051 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website...
Ligolo - Reverse Tunneling Made Easy For Pentesters, By Pentesters
Ligolo is a simple and lightweight tool for establishing SOCKS5 or TCP tunnels from a reverse connection in complete safety TLS certificate with elliptical curve. It is comparable to Meterpreter with Autoroute + Socks4a , but more stable and faster. Use case You compromised a Windows / Linux / Ma...
h1-ctf: [H1-2006 2020] CTF Writeup!
The Beginning ===================== The scope of the H1-2006 CTF was .bountypay.h1ctf.com. After opening https://bountypay.h1ctf.com, I noticed that on the top left of the screen there was a dropdown with two login pages: one for Customers https://app.bountypay.h1ctf.com/ and one for Staff...
CVE-2019-12036
...
begoodsubbingteam.cliphub.net Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1179668 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website...
jessie.fandom.com Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1176228 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website...
Open-Xchange: Missing (or redundant) null check in `dcrypt_openssl_sign`
Function dcryptopensslsign in file src/lib-dcrypt/dcrypt-openssl.c has the following code if EVPPKEYbaseidkey-key == EVPPKEYRSA errorr = "Format does not support RSA"; return FALSE; and later if md == NULL if errorr != NULL errorr = tstrdupprintf "Unknown digest %s", algorithm; return FALSE; So,...
poppler:pdf_fuzzer: Use-of-uninitialized-value in poppler::destination_private::destination_private
Project: https://anongit.freedesktop.org/git/poppler/poppler.git Detailed Report: https://oss-fuzz.com/testcase?key=5650183043153920 Project: poppler Fuzzing Engine: libFuzzer Fuzz Target: pdffuzzer Job Type: libfuzzermsanpoppler Platform Id: linux Crash Type: Use-of-uninitialized-value Crash...
narscosmetics.com Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1173199 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website...
arquivos.rtp.pt Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1173143 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website...
Exploit for CVE-2020-2551
WebLogic-CVE-2020-2551-To-Internet CVE-2020-2551: POC fo...
Managing Vulnerabilities Introduced from Open Source Code Libraries
Modern development architectures are commonly based around open source components. Using open source components helps organizations lower their overall development cost while improving the time to market for new applications. Introducing these components however, can lead to serious consequences...
Minimalistic-offensive-security-tools - A Repository Of Tools For Pentesting Of Restricted And Isolated Environments
Minimalistic SMB loginbruteforcer smblogin.ps1 A simple SMB login attack and password spraying tool. It takes a list of targets and credentials username and password as parameters and it tries to authenticate against each target using the provided credentials. Despite its minimalistic design, the...
blworks.net Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1168003 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website...
justiceproducts.com Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1167588 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website...
footdistrict.com Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1167344 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website...
richcoins.co.kr Improper Access Control vulnerability
Open Bug Bounty ID: OBB-1167004 Security Researcher foreverunc Helped patch 50 vulnerabilities Received 3 Coordinated Disclosure badges Received 2 recommendations , a holder of 3 badges for responsible and coordinated disclosure, found a security vulnerability affecting richcoins.co.kr website an...