Exploit for Race Condition in Microsoft

CVE-2023-36884: MS Office HTML RCE with crafted documents On...

The Tale of Two Exploits - Breaking Down CVE-2023-36884 and the Infection Chain

The Tale of Two Exploits - Breaking Down CVE-2023-36884 and the Infection Chain By Trellix · August 24, 2023 This blog was written by Chintan Shah Executive Summary On July 11 2023, Microsoft released a patch fixing multiple actively exploited RCE vulnerabilities and disclosed a phishing campaign...

uwc-usa.org XSS vulnerability

Open Bug Bounty ID: OBB-556195 Description| Value ---|--- Affected Website:| uwc-usa.org Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Disclosure Standard:| Coordinated Disclosure based o...

uwc.hua.hrsmart.com XSS vulnerability

Vulnerable URL: https://uwc.hua.hrsmart.com/hr/ats/JobSearch/viewAll/%22%20onmouseover=%22prompt/OPENBUGBOUNTY/%22%20/jobSearchPaginationExternalpage:1 Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / No...