CVE-2021-32683

wire-webapp is the web version of Wire, an open-source messenger. A cross-site scripting vulnerability exists in wire-webapp prior to version 2021-06-01-production.0. If a user is instructed to open an image in a new tab right click - open in new tab, or copy the URL and paste it in the URL bar, ...

Chimein.mozilla.org Cross Site Scripting

Exploit Title: Mozilla.org sub-domain Stored-XSS - Reflected-XSS - HTTP Response Splitting Date: 03/04/2017 Author: Yann CAM @ Synetis - ASafety Vendor or Software Link: www.mozilla.org Version: / Category: Stored Cross Site Scripting / Reflected Cross Site Scripting / HTTP Response Splitting...

Symantec PGP Universal Web Messenger Unauthorized Access

Vulnerability title: Unauthorised Access To Other Users Email Messages in Symantec PGP Universal Web Messenger CVE: CVE-2014-1643 Vendor: Symantec Product: PGP Universal Web Messenger Affected version: All Prior to 3.3.2 Fixed version: 3.3.2 Reported by: Richard O'Donnell Details: Authenticated W...

Ebuddy Web Messenger Disclosure / CSRF Vulnerabilities

Ebuddy Web Messenger suffers from index disclosure, cross site request forgery, htaccess file disclosure, and insecure credential transport vulnerabilities...

XSS Ebuddy (responsible disclosure)

Early this morning, the security group Virtual Luminous published a vulnerability in 'Ebuddy Web Messenger' and we would like to inform you that this vulnerability had been discovered and reported to the vendor on June 5th, 2011 by DcLabs Security Research Group. In the report below you are going...

Persistent XSS vulnerability in eBuddy Web Messenger

Persistent XSS vulnerability in eBuddy Web Messenger A team member from Virtual Luminous Security , Russian Federation, has discovered a persistent XSS vulnerability in eBuddy the biggest web IM solution in the world by transmitting messages with embedded encoded javascript code. In-depth detail...

Persistent XSS vulnerability in eBuddy Web Messenger

Persistent XSS vulnerability in eBuddy Web Messenger A team member from Virtual Luminous Security, Russian Federation, has discovered a persistent XSS vulnerability in eBuddy the biggest web IM solution in the world by transmitting messages with embedded encoded javascript code. In-depth detail...

eBuddy Web Messenger Cross Site Scripting

\ \ / / | | | | \ \ / / | || '|| || | | | / || | \ V / | || | | | | || || | || | / |||| | ,| ,||| | | | | | | | || ' \ | || ' \ / \ | | | |/ | | || || || | | | | || || | | || || || |\ \ ||,||| || |||||| || / ,||/ warv0x, krypt0n, Russian Fedration, sol@riss0lar, yoadee P.S: Shoutout to...

PR10-06: Cross-domain redirect on PGP Universal Web Messenger

http://www.procheckup.com/vulnerabilitymanager/vulnerabilities/pr10-06 PR10-06 Cross-domain redirect on PGP Universal Web Messenger Advisory publicly released: Thursday, 16 December 2010 Vulnerability found: Wednesday, 10 February 2010 Vendor informed: Wednesday, 10 February 2010 Vulnerability...

PHP Universal Web Messenger Cross-Domain Redirect

http://www.procheckup.com/vulnerabilitymanager/vulnerabilities/pr10-06 PR10-06 Cross-domain redirect on PGP Universal Web Messenger Advisory publicly released: Thursday, 16 December 2010 Vulnerability found: Wednesday, 10 February 2010 Vendor informed: Wednesday, 10 February 2010 Vulnerability...