7 matches found
underdogvapes.com Cross Site Scripting vulnerability OBB-3245955
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
How Vapes Can Be Used For Hacking Computers
By Owais Sultan Cyber-security has become a serious issue following a wave of attacks on computer systems of some multinational companies across the world This is a post from HackRead.com Read the original post: How Vapes Can Be Used For Hacking Computers...
freedom-vapes.com XSS vulnerability
Vulnerable URL: http://freedom-vapes.com/tagproducts.php?idtag=%22%3E%3Csvg/onload=prompt%28/OPENBUGBOUNTY/%29%3E Details: Description| Value ---|--- Patched:| Yes, at 24.11.2017 Latest check for patch:| 24.11.2017 10:59 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa...
CVE-2014-6651
The Planet of the Vapes Forum aka com.tapatalk.planetofthevapescoukforums application 3.7.9 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Information disclosure
The Planet of the Vapes Forum aka com.tapatalk.planetofthevapescoukforums application 3.7.9 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-6651
The Planet of the Vapes Forum aka com.tapatalk.planetofthevapescoukforums application 3.7.9 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-6651
The CVE-2014-6651 entry concerns the Planet of the Vapes Forum Android app (version 3.7.9) which does not verify X.509 certificates from SSL servers, enabling MITM attackers to spoof servers and obtain sensitive information via a crafted certificate. This is documented across several sources (NVD...