Lucene search
K

117 matches found

Openbugbounty
Openbugbounty
added 2023/06/02 5:5 p.m.10 views

surf-centrum.cz Cross Site Scripting vulnerability OBB-3376117

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/04/07 8:31 p.m.9 views

surf-centrum.cz Cross Site Scripting vulnerability OBB-3252953

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

5.9AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/01/08 11:14 p.m.12 views

surf-report.com Cross Site Scripting vulnerability OBB-3135814

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2022/08/25 6:23 p.m.18 views

surf-centrum.cz Cross Site Scripting vulnerability OBB-2864428

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2022/08/12 5:8 a.m.8 views

surfersparadiseslsc.com.au Cross Site Scripting vulnerability OBB-2838020

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2022/07/25 10:54 a.m.10 views

surf-report.com Cross Site Scripting vulnerability OBB-2815112

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2022/06/15 1:6 p.m.16 views

snow.surfreport.it Cross Site Scripting vulnerability OBB-2651384

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Veracode
Veracode
added 2022/04/12 7:15 a.m.29 views

Time-Based One-Time Password Algorithm (TOPT) Replay Attack

devise-two-factor is vulnerable to time-based one-time password algorithm TOPT replay attacks. A remote attacker is able to reuse the one-time-password immediately trailing the interval in order to gain access to the victim's account given that the attacker already knows the victim's credentials...

5.3CVSS3.9AI score0.01782EPSS
Exploits0References2Affected Software2
Openbugbounty
Openbugbounty
added 2020/10/21 12:21 p.m.7 views

mauisunsandsurfcondos.com Cross Site Scripting vulnerability OBB-1432876

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2020/10/04 1:57 p.m.9 views

kansassurf.com Cross Site Scripting vulnerability OBB-1381674

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
NVD
NVD
added 2019/11/19 3:15 p.m.17 views

CVE-2012-0842

surf: cookie jar has read access from other local user...

5.5CVSS5.2AI score0.00381EPSS
Exploits0References7
Prion
Prion
added 2019/11/19 3:15 p.m.14 views

Code injection

surf: cookie jar has read access from other local user...

2.1CVSS6.6AI score0.00381EPSS
Exploits0References7Affected Software2
CVE
CVE
added 2019/11/19 2:53 p.m.61 views

CVE-2012-0842

CVE-2012-0842 affects surf: the cookie jar can be read by a local user, enabling potential private cookie disclosure. The available documents describe the issue and its local access impact but do not provide exploitation details or remediation guidance.

5.5CVSS5.1AI score0.00381EPSS
Exploits0References7Affected Software1
Wired Threat Level
Wired Threat Level
added 2019/11/13 4:0 p.m.51 views

The Brave Browser Extends Its Payouts to iOS

Nearly four years after Brave proposed paying users to surf the web, that vision is finally coming to the iPhone...

3.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2018/04/24 8:44 p.m.10 views

surf-report.com XSS vulnerability

Open Bug Bounty ID: OBB-607966 Description| Value ---|--- Affected Website:| surf-report.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
hackapp
hackapp
added 2016/04/01 9:46 a.m.17 views

Santa Runner :Xmas Subway Surf - Base64 encoded String, Customized SSL, Dangerous filesystem permissions vulnerabilities

HackApp vulnerability scanner discovered that application Santa Runner :Xmas Subway Surf published at the 'play' market has multiple vulnerabilities...

0.7AI score
Exploits0References1Affected Software1
hackapp
hackapp
added 2016/04/01 9:44 a.m.10 views

Mr-Bean Surf - Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Mr-Bean Surf published at the 'play' market has multiple vulnerabilities...

0.6AI score
Exploits0References1Affected Software1
hackapp
hackapp
added 2016/04/01 9:35 a.m.13 views

MSW Surf Forecast - Customized SSL, WebView SSL handling enabled, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application MSW Surf Forecast published at the 'play' market has multiple vulnerabilities...

0.8AI score
Exploits0References1Affected Software1
RubySec
RubySec
added 2015/09/17 12:0 a.m.21 views

devise-two-factor 1.1.0 and earlier vulnerable to replay attacks

A OTP replay vulnerability in devise-two-factor 1.1.0 and earlier allows local attackers to shoulder-surf a user's TOTP verification code and use it to login after the user has authenticated. By not "burning" a previously used TOTP, devise-two-factor allows a narrow window of opportunity aka the...

5.3CVSS2.6AI score0.01782EPSS
Exploits0References1Affected Software1
ThreatPost
ThreatPost
added 2014/01/24 3:19 p.m.11 views

Snapchat's CAPTCHA Hacked in 30 Minutes, 100 Line of Code

It was only going to be a matter of time before someone figured out a way past Snapchat’s new CAPTCHA verification method. Just one day after the photo sharing application announced its latest security measure, one researcher claimed Wednesday that he was able to hack it with as few as 100 lines ...

6.8AI score
Exploits0References8
Rows per page
Query Builder