Lucene search
K

4 matches found

seebug.org
seebug.org
added 2014/09/18 12:0 a.m.37 views

IP Board 3.x - CSRF Token hjiacking

No description provided by source. Title: IP Board 3.x CSRF - Token hjiacking Date: 03.09.14 Version: = 3.4.6 Vendor: invisionpower.com Author: Piotr S. Video-PoC: https://www.youtube.com/watch?v=G5P21TA4DjY 1 Introduction Latest and propabbly previous IPB verions suffers on vulnerability, which...

7.1AI score
Exploits0
Prion
Prion
added 2013/12/11 12:55 a.m.16 views

Design/Logic Flaw

Microsoft Office 2013 and 2013 RT allows remote attackers to discover authentication tokens via a crafted response to a file-open request for an Office file on a web site, as exploited in the wild in 2013, aka "Token Hijacking Vulnerability."...

4.3CVSS7.1AI score0.12769EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2013/12/11 12:0 a.m.66 views

CVE-2013-5054

CVE-2013-5054 affects Microsoft Office 2013 and 2013 RT. The vulnerability is an information disclosure where remote attackers can gain authentication tokens by exploiting a flaw in how Office handles specially crafted responses to file-open requests on a malicious website. The issue is described...

4.3CVSS6.7AI score0.12769EPSS
Exploits0References1Affected Software2
VulnCheck KEV
VulnCheck KEV
added 2013/12/10 12:0 a.m.4 views

VulnCheck KEV: CVE-2013-5054

Microsoft Office 2013 and 2013 RT allows remote attackers to discover authentication tokens via a crafted response to a file-open request for an Office file on a web site, as exploited in the wild in 2013, aka "Token Hijacking Vulnerability."...

4.3CVSS5.8AI score0.12769EPSS
Exploits0References1
Rows per page
Query Builder