24 matches found
EUVD-2014-7924
Malware in sbrugna...
profile.greatfallstribune.com Cross Site Scripting vulnerability OBB-3918148
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
profile.southbendtribune.com Cross Site Scripting vulnerability OBB-3842594
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
tullamoretribune.ie Cross Site Scripting vulnerability OBB-3279694
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Malware Attack Crippled Production of Major U.S. Newspapers
A malware attack targeting Tribune Publishing Co. crippled the printing and deliveries of several major newspapers across the U.S. this weekend – including the Los Angeles Times and Wall Street Journal. The virus impacted computer systems of Tribune Publishing Co., which publishes an array of maj...
institut-tribune-socialiste.fr XSS vulnerability
Open Bug Bounty ID: OBB-670807 Description| Value ---|--- Affected Website:| institut-tribune-socialiste.fr Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
tribunemedia.com Improper Access Control vulnerability
Open Bug Bounty ID: OBB-626977 Description| Value ---|--- Affected Website:| tribunemedia.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Wordpress Vulnerability Type:| IAC Improper Access Control / CWE-284 CVSSv3 Score:| 6.5...
chronicle-tribune.com XSS vulnerability
Open Bug Bounty ID: OBB-620816 Description| Value ---|--- Affected Website:| chronicle-tribune.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
herault-tribune.com XSS vulnerability
Open Bug Bounty ID: OBB-597750 Description| Value ---|--- Affected Website:| herault-tribune.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
cameroon-tribune.cm XSS vulnerability
Open Bug Bounty ID: OBB-569712 Description| Value ---|--- Affected Website:| cameroon-tribune.cm Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
July 5, 2017 – Morning Cyber Coffee Headlines – “Isaac Newton” Edition
Good morning! Sit with Carbon Black this morning over a cup of coffee or tea and browse a few industry headlines to get the day started. We’ve got just enough information below to get you through that first cup…enjoy! July 5, 2017 - Headlines Carbon Black in the News: Carbon Black’s Cb Defense...
gateway.okhistory.org XSS vulnerability
Vulnerable URL: http://gateway.okhistory.org/explore/partners/OKHS/browse/?fq=strtitleserial:The%2520Harmon%2520County%2520Tribune'%22%26%25prompt/OPENBUGBOUNTY/...
login.greatfallstribune.com XSS vulnerability
Vulnerable URL: https://login.greatfallstribune.com/PGRF-GUP/authenticate/?from-state=returning-user-get-redirect%27%22--%3E%3C/Title/%3E%3C/Script/%3E%3CSvg%20/Onload=confirmOPENBUGBOUNTY%3E= Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability type:...
classifieds.wellandtribune.ca XSS vulnerability
Vulnerable URL: http://classifieds.wellandtribune.ca/welland/all-categories/search?searchtype=advancedsearchkeyword=%22%3E%3Csvg%20onload=prompt%22OPENBUGBOUNTY%22%3E Details: Description| Value ---|--- Patched:| Yes, at 24.11.2017 Latest check for patch:| 24.11.2017 18:30 GMT Vulnerability type:...
bourse.latribune.fr XSS vulnerability
Vulnerable URL: http://bourse.latribune.fr/blocs/cerclefinance.php?IDCATEGORY=%22%3E%3Cimg%20src=x%20onerror=prompt/OPENBUGBOUNTY/%3E Details: Description| Value ---|--- Patched:| Yes, at 27.07.2017 Latest check for patch:| 27.07.2017 10:17 GMT Vulnerability type:| XSS Vulnerability status:|...
Journalist Matthew Keys gets 2-Year Prison term for helping Anonymous Hackers
Former Reuters journalist Matthew Keys, who was convicted last year of helping the Anonymous group of hackers, has been sentenced to 24 months in prison for computer hacking charges. Keys was found guilty last year in October of giving Anonymous login credentials that allowed the group to deface...
LTO.de - Legal Tribune Online - External URLs, WebView JavaScript enabled, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application LTO.de - Legal Tribune Online published at the 'play' market has multiple vulnerabilities...
villagetribune.org.uk XSS vulnerability
Vulnerable URL: http://villagetribune.org.uk/search.php?q=%22%3E%3C--%60%3Cimg/src=%60%20onerror=alert%28%27XSSPOSED%27%29%3E%20--!%3E Details: Description| Value ---|--- Patched:| Yes, at 30.01.2016 Latest check for patch:| 30.01.2016 23:20 GMT Vulnerability type:| XSS Vulnerability status:|...
Cross site scripting
Cross-site scripting XSS vulnerability in the Tribune module 6.x-1.x and 7.x-3.x for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via a node title...
CVE-2014-8075
The CVE-2014-8075 entry covers a Cross-site scripting (XSS) vulnerability in the Drupal Tribune module (versions 6.x-1.x and 7.x-3.x). The root cause is insufficient filtering of user-provided text from Tribune node titles, allowing remote authenticated users with certain permissions to inject ar...