CVE-2025-11724

The EM Beer Manager plugin for WordPress is vulnerable to arbitrary file upload leading to remote code execution in all versions up to, and including, 3.2.3. This is due to missing file type validation in the EMBMAdminUntappdImportimage function and missing authorization checks on the...

untappd.com Cross Site Scripting vulnerability OBB-2692922

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

untappd.com Cross Site Scripting vulnerability OBB-1454293

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Untappd - Discover Beer - BSD license, Exported components, External URLs vulnerabilities

HackApp vulnerability scanner discovered that application Untappd - Discover Beer published at the 'play' market has multiple vulnerabilities...

untappd.com Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-211704 Security Researcher k0t Helped patch 2153 vulnerabilities Received 9 Coordinated Disclosure badges Received 98 recommendations , a holder of 9 badges for responsible and coordinated disclosure, found a security vulnerability affecting untappd.com website and its...

untappd.com XSS vulnerability

Vulnerable URL: https://untappd.com/victorybeer?ref='"--!%3E%3C/Iframe%3E%3Csvg/onload=confirmOPENBUGBOUNTY%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 28760 VIP website...

untappd.com XSS vulnerability

Open Bug Bounty ID: OBB-194663 Description| Value ---|--- Affected Website:| untappd.com Open Bug Bounty Program:| Not created yet Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediatio...

untappd.com XSS vulnerability

Vulnerable URL: https://untappd.com/search?q=x=x='" Details: Description| Value ---|--- Patched:| Yes, at 24.08.2015 Latest check for patch:| 24.08.2015 10:36 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 20838 Google Pagerank| 6 VIP website status:| Yes Check...