14 matches found
EUVD-2019-3395
Malware in sbrugna...
Loose Lips Can Sink Websites Too
When we think about keeping websites safe, we often imagine complex firewalls, multi-layered defenses, and robust encryption...
XSS via upload pdf file
Description Hi there, It's my pleasure to submit a report to you again to maintain the safety of the project.Most users can upload files in the module named 'Resources' .We can upload pdf files.But uploading malicious pdf files will cause xss vulnerability which will cause great harm to users of...
Online scams: How Safe Are the Websites You Visit?
By Uzair Amir Every year, millions of unsuspecting people fall victim to scams online. Fraudsters can cause irreparable damage to your bank balance, your reputation, and your life. This is a post from HackRead.com Read the original post: Online scams: How Safe Are the Websites You Visit?...
A week in security (January 6 – 12)
Last week on Malwarebytes Labs, we told readers how to check the safety of websites and their related files, explored the shady behavior taking place within the billion-dollar search industry, broke down the top six ways that hackers target retail businesses, and put a spotlight on the ransomware...
Bing Warns VLC Media Player Site is ‘Suspicious’ in Likely False-Positive Gaff
Microsoft’s Bing search engine warned its users the official VLC media player website was “suspicious” and dissuaded users from visiting the popular destination, suggesting the site contained “malicious software.” The site is no longer listed as unsafe. In a red warning message presented to users...
europa.eu XSS vulnerability
Vulnerable URL: http://europa.eu/interpretation/elearning/en/assets/23108fcaaic2.swf?datapath=http://nsa.is.spying-on.us/eu.xml Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 861 VIP website status:| Yes Check...
Pornhub Launches Bug Bounty Program; Offering Reward up to $25,000
With the growing number of cyber attacks and data breaches, a significant number of companies and organizations have started Bug Bounty Programs to encourage hackers and security researchers to find and responsibly report bugs in their services and get a reward. Now, even pornography sites are...
safety.huji.ac.il XSS vulnerability
Open Bug Bounty ID: OBB-55849 Description| Value ---|--- Affected Website:| safety.huji.ac.il Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat...
WordPress 4.0 the following version of the existence of cross-site scripting vulnerability-vulnerability warning-the black bar safety net
WordPress is a famous open source CMS content management system. Recently, in 4. 0 version of the following Wordpress is found to exist cross-site scripting vulnerabilitiesXSS, the new version of Wordpress has fixed these issues. For safety reasons, the recommendations of the webmasters as soon a...
B2Bbuilder injection vulnerability+Exp+the default administrator account-vulnerability warning-the black bar safety net
The test version of the program is: B2Bbuilderv6. 6 http://www.site.com/?m=offer&s=offerlist&id=1 0 0 4+and%28select+1+from%28select+count%2 8%2 9%2Cconcat%2 8% 2 8 select+%28select+%28select+concat%280x27%2C0x7e%2Cb2bbuilderadmin. user,0x27,password %2C0x27%2C0x7e%2 9+from+%60b2bbuilder%6 0...
Japanese Dating compensated Dating CMS injection vulnerability-vulnerability warning-the black bar safety net
Find mining on the network vulnerabilities is not what is the problem with the light thing, but because of the political issues to the invasion of Japan website, nor what glorious things will only become cannon fodder. You think you're out of breath, in fact you and I have what difference. Front...
NetCat CMS multiple defects and repair-vulnerability warning-the black bar safety net
Title: NetCat CMS Code exec, SQL-injection Author: brainpillow Official website: http://netcat.ru/ The defects of the present cms version are valid: ======================================================= Sql injection: www.badguest.cn /search/?...
sablog1. 6 CSRF vulnerability POC-vulnerability warning-the black bar safety net
sablog1. 6 CSRF vulnerability POC. This in my blog, The test is successful, the official download the latest version of the test is successful, but in Ozawa blog failure. The reason is his own modified source program, to determine the referer's. POC: Comments, web site address Enter:...