22 matches found
EUVD-2018-17181
Malware in sbrugna...
madisontractor.com Cross Site Scripting vulnerability OBB-3861379
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
A week in security (October 17 - 23)
Last week on Malwarebytes Labs: Thermal cameras could help reveal your password How to spot a scam Warning: "FaceStealer" iOS and Android apps steal your Facebook login Criminal group busted after stealing hundreds of keyless cars Fake tractor fraudsters plague online transactions DeadBolt...
Playing Doom on a John Deere tractor with Sick Codes: Lock and Code S03E18
In 1993, the video game developers at id Software released Doom, a first-person shooter that placed a nameless protagonist into the fiery depths of hell, equipped with an arsenal of weapons to mow down imps, demons, lost souls, and the intimidating "Barons of Hell." In 2022, the hacker Sick Codes...
White Hat Hacker at DefCon Jaikbreaks Tractor to Play Doom
By Waqas The hacker "Sick Codes" managed to jailbreak the display/control unit of one of the John Deere Tractor models… This is a post from HackRead.com Read the original post: White Hat Hacker at DefCon Jaikbreaks Tractor to Play Doom...
A New Tractor Jailbreak Rides the Right-to-Repair Wave
A hacker has formulated an exploit that provides root access to two popular models of the company’s farm equipment...
Connected Farms Easy Pickings for Global Food Supply-Chain Hack
A group of hackers made an unnerving DEF CON 29 presentation showing how the sprawling growth of digital and automated farming has left the world’s food supply chain vulnerable to cyberattack. A video for DEF CON 29 hacker conference this week put out by the group Sick Codes explained that modern...
yamaha-lawn-tractor-fan-club.996269.n3.nabble.com Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1185829 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website...
Pixars Tractor Cross-Site Scripting Vulnerability
Pixars Tractor is a web rendering solution. The product includes features such as resource sharing controls, Python module extensions, and more. A cross-site scripting vulnerability exists in Pixars Tractor 2.2 and prior versions, which can be exploited by remote attackers to inject and execute...
CVE-2018-5411
Pixar's Tractor software, versions 2.2 and earlier, contain a stored cross-site scripting vulnerability in the field that allows a user to add a note to an existing node. The stored information is displayed when a user requests information about the node. An attacker could insert Javascript into...
Cross site scripting
Pixar's Tractor software, versions 2.2 and earlier, contain a stored cross-site scripting vulnerability in the field that allows a user to add a note to an existing node. The stored information is displayed when a user requests information about the node. An attacker could insert Javascript into...
CVE-2018-5411
Pixar's Tractor software, versions 2.2 and earlier, contain a stored cross-site scripting vulnerability in the field that allows a user to add a note to an existing node. The stored information is displayed when a user requests information about the node. An attacker could insert Javascript into...
CVE-2018-5411 Pixar's Tractor software, versions 2.2 and earlier, contains a stored cross-site scripting vulnerability
Pixar's Tractor software, versions 2.2 and earlier, contain a stored cross-site scripting vulnerability in the field that allows a user to add a note to an existing node. The stored information is displayed when a user requests information about the node. An attacker could insert Javascript into...
CVE-2018-5411
Pixar’s Tractor software, version 2.2 and earlier, contains a stored cross-site scripting (XSS) vulnerability in the note field of a node. The attacker can inject JavaScript into the note, which is saved and later displayed to authenticated users, potentially enabling redirects, session cookie hi...
Pixar Tractor contains a stored cross-site scripting vulnerability
Overview Pixar's Tractor network rendering software is vulnerable to stored cross-site scripting which may allow an attacker to execute arbitrary JavaScript. Description Pixar's Tractor software, versions 2.2 and earlier, contain a stored cross-site scripting vulnerability CWE-79 in the field tha...
tractor-supply-store.com XSS vulnerability
Open Bug Bounty ID: OBB-676289 Description| Value ---|--- Affected Website:| tractor-supply-store.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
vapormatic.com XSS vulnerability
Open Bug Bounty ID: OBB-616119 Description| Value ---|--- Affected Website:| vapormatic.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
Tractor Pull - Dangerous filesystem permissions, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Tractor Pull published at the 'play' market has multiple vulnerabilities...
Farm Tractor Simulator 3D - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities
HackApp vulnerability scanner discovered that application Farm Tractor Simulator 3D published at the 'play' market has multiple vulnerabilities...
Tractor Farmer Simulator 2016 - Customized SSL, WebView SSL handling enabled, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Tractor Farmer Simulator 2016 published at the 'play' market has multiple vulnerabilities...