Trendyol: Cache Poisoning Allows Zero Interaction Store XSS

The vulnerability allowed an attacker to perform a cache poisoning attack, which resulted in a zero-interaction stored cross-site scripting XSS vulnerability on the Trendyol website. The attack was achieved by modifying the User-Agent header and adding a malicious parameter to the URL, which was...

com.trendyol:stove-testing-e2e-kafka (>=0.13.0 <=0.13.1) potentially affected by CVE-2024-7254 via com.google.protobuf:protobuf-kotlin (=4.28.0)

com.google.protobuf:protobuf-kotlin MAVEN version =4.28.0 is affected by a known vulnerability. The following packages have a transitive dependency on com.google.protobuf:protobuf-kotlin and may be impacted: - com.trendyol:stove-testing-e2e-kafka =0.13.0, =0.13.1 Source cves: CVE-2024-7254 Source...

SSRF Vulnerability on assetlinks_check(act_name, well_knowns)

Summary While examining the "App Link assetlinks.json file could not be found" vulnerability detected by MobSF, we, as the Trendyol Application Security team, noticed that a GET request was sent to the "/.well-known/assetlinks.json" endpoint for all hosts written with "android:host". In the...

GHSA-WFGJ-WRGH-H3R3 SSRF Vulnerability on assetlinks_check(act_name, well_knowns)

Summary While examining the "App Link assetlinks.json file could not be found" vulnerability detected by MobSF, we, as the Trendyol Application Security team, noticed that a GET request was sent to the "/.well-known/assetlinks.json" endpoint for all hosts written with "android:host". In the...