2 matches found
Starbucks: Bug in GraphQL and API integration leads to limited user address disclosure
A modified GraphQL query to fetch a user's address book entries led to a limited disclosure of user address book entries. The modified query resulted in a backend API request with undefined as a parameter. The response contained address lists of accounts with a username of undefined. We were not...
I-net Multi User Email Script SQLi Vulnerability
No description provided by source. Name : I-net Multi User Email Script SQLi Vulnerability Date : june, 27 2010 Critical Level : HIGH Vendor Url : http://www.i-netsolution.com/ Google Dork: inurl:/jobsearchengine/ Author : Sid3^effects aKa HaRi shellc99atyahoo.com special thanks to : r0073r...