8 matches found
EUVD-2014-6593
Malware in sbrugna...
lasvegas-slotmachine.info Cross Site Scripting vulnerability OBB-3070029
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
slotmachine-casino.com Cross Site Scripting vulnerability OBB-3065095
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
lucky-slotmachine.com Cross Site Scripting vulnerability OBB-2522407
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
CVE-2014-6715
The SlotMachine aka com.popoinnovation.SlotMachine application 1.03 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Information disclosure
The SlotMachine aka com.popoinnovation.SlotMachine application 1.03 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-6715
The CVE-2014-6715 entry concerns the SlotMachine Android app (com.popoinnovation.SlotMachine) version 1.03, where X.509 certificate verification for SSL/TLS connections is not performed. Root cause: lack of certificate validation enables MITM attackers to spoof servers and exfiltrate sensitive in...
CVE-2014-6715
The SlotMachine aka com.popoinnovation.SlotMachine application 1.03 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...