unilever-friends.de Cross Site Scripting vulnerability OBB-3082385

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

U.S. Govt. Apps Bundled Russian Code With Ties to Mobile Malware Developer

A recent scoop by Reuters revealed that mobile apps for the U.S. Army and the Centers for Disease Control and Prevention CDC were integrating software that sends visitor data to a Russian company called Pushwoosh, which claims to be based in the United States. But that story omitted an important...

42,000 phishing domains discovered masquerading as popular brands

By Deeba Ahmed According to researchers, this scam is highly sophisticated and large-scale, targeting brands like McDonald’s, Unilever, Emirates, Knorr, Coca-Cola, etc. This is a post from HackRead.com Read the original post: 42,000 phishing domains discovered masquerading as popular brands...

Unilever CISO on balancing business risks with cybersecurity

Imagine showing up to work every day knowing that your job requires protecting 160,000 employees creating more than 450 products around the world—tea, ice cream, personal care, laundry and dish soaps—across a customer base of more than two and a half billion people every day. Unilever Chief...

Unilever CISO on balancing business risks with cybersecurity

Imagine showing up to work every day knowing that your job requires protecting 160,000 employees creating more than 450 products around the world—tea, ice cream, personal care, laundry and dish soaps—across a customer base of more than two and a half billion people every day. Unilever Chief...

knorr-app.fb.unileverapps.com XSS vulnerability

Vulnerable URL: http://knorr-app.fb.unileverapps.com/home/promotionframe?promoName=Spargel=javascript:alert/OPENBUGBOUNTY/ Details: Description| Value ---|--- Patched:| No Latest check for patch:| 05.01.2018 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown /...

Unfixed XSS vulnerability at search.unilever.se

Security researcher Uber0n, has submitted on 23/09/2007 a cross-site-scripting XSS vulnerability affecting search.unilever.se, which at the time of submission ranked 3491573 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 28/09/2007. It is...

Unfixed XSS vulnerability at search.unilever.com

Security researcher CrypTIc, has submitted on 26/07/2007 a cross-site-scripting XSS vulnerability affecting search.unilever.com, which at the time of submission ranked 29547 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 07/08/2007. It is...