Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Openbugbounty
Openbugbountyadded 2016/05/12 6:31 a.m.11 views

stopthehacker.com XSS vulnerability

Vulnerable URL: https://www.stopthehacker.com/wp-includes/js/mediaelement/flashmediaelement.swf?jsinitfunctio%gn=alertOPENBUGBOUNTY Details: Description| Value ---|--- Patched:| Yes, at 13.06.2016 Latest check for patch:| 13.06.2016 17:37 GMT Vulnerability type:| XSS Vulnerability status:| Public...

6.3AI score
Exploits0
Hacker One
Hacker Oneadded 2016/05/11 5:38 p.m.115 views

StopTheHacker: Wordpress flashmediaelement.swf XSS on stopthehacker.com

Hi, It appears that the domain stopthehacker.com has an XSS vulnerability, specifically in flashmediaelement.swf. PoC: https://www.stopthehacker.com/wp-includes/js/mediaelement/flashmediaelement.swf?jsinitfunctio%gn=alertPoC%20PoC%20PoC Please see the attached screen shot for the alert box...

1.2AI score
Exploits0
Hacker One
Hacker Oneadded 2014/04/25 12:56 p.m.35 views

StopTheHacker: Reflected cross site scripting in login page

It was observed that the application is vulnerable to cross-site scripting XSS. XSS is a type of attack that involves running a malicious scripts on a victim’s browser. Once exploited It is possible to steal or manipulate a legitimate user’s session credentials including session cookies. Request ...

0.2AI score
Exploits0
Hacker One
Hacker Oneadded 2014/04/22 4:57 p.m.28 views

StopTheHacker: XSS Reflected - https://www.stopthehacker.com/

Hi. I want to report a Reflected xss vulnerability that I found in www.stopthehacker website and which can affect the safety of your users. This vulnerability allows an attacker to inject in web pages javascript content for sending malicious scripts to an unsuspecting user. This flaw can access a...

Exploits0
Hacker One
Hacker Oneadded 2014/04/21 9:55 p.m.10 views

StopTheHacker: XSS in Stopthehacker support

Hello, 1. go to http://www.stopthehacker.com/support/ 2. input " in the search box use firefox 3. A prompt box will appear. XSSed. Thank you sir. Clifford...

0.1AI score
Exploits0
Hacker One
Hacker Oneadded 2014/04/21 9:9 p.m.24 views

StopTheHacker: CSRF - Disabling orders at https://panel.stopthehacker.com/manage/disable-order/order/ID

Hi there, there's a CSRF which would allow an attacker to disable an order. Host: https://panel.stopthehacker.com Steps to reproduce: - 1. Login to the panel. - 2. Subscribe/order a new scan - 3. Go to the Billing page and get the order ID - 4. Put the order id in the PoC below and submit it - 5...

7.1AI score
Exploits0
Hacker One
Hacker Oneadded 2014/04/21 7:10 p.m.13 views

StopTheHacker: Information Disclosure (FPD) - stopthehacker.com

Hi, I found a information disclosure vulnerabilityFull path disclosure Vulnerable link : http://www.stopthehacker.com/wp-includes/rss-functions.php You can see in the page the path of the site Fatal error: Call to undefined function deprecatedfile in...

Exploits0
Rows per page
Query Builder