Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Hacker One
Hacker Oneadded 2016/12/21 1:10 p.m.21 views

WebSummit: Subdomain Takeover at http://gameday.websummit.net

As i said in the title i found a subdomain takeover vulnerability on the url http://gameday.websummit.net The url was trying to find a bucket that didn't exist from a probably forgotten dns entry that was at gameday.websummit.net.s3-website-eu-west-1.amazonaws.com So i created a bucket with the...

7AI score
Exploits0
Hacker One
Hacker Oneadded 2016/10/19 1:22 a.m.11 views

WebSummit: Reflective XSS

It appears the fix for https://hackerone.com/reports/166699 did not stick. URL https://websummit.net/attendees/featured-attendees?q=rubyoob%27%3E%3Ciframe/onload=alertdocument.domain%3E%3C/iframe%3E URL Parameters q=rubyoob%27%3E%3Ciframe/onload=alertdocument.domain%3E%3C/iframe%3E Request Header...

6.9AI score
Exploits0
Hacker One
Hacker Oneadded 2016/10/01 7:21 p.m.22 views

WebSummit: Full Sub Domain Takeover at s3.websummit.net

Hey The sub domain at s3.websummit.net is pointing to dws-content.s3-website-eu-west-1.amazonaws.com. http://s3.websummit.net/ 404 Not Found Code: NoSuchBucket Message: The specified bucket does not exist BucketName: s3.websummit.net RequestId: DB4C92F0D805D3F3 HostId:...

Exploits0
Hacker One
Hacker Oneadded 2016/09/28 8:24 p.m.20 views

WebSummit: WebSummit - Open Redirect

Same Open Redirect issue at 3 websites: -https://forms.moneyconf.com/gates Post data: phonenumber=922+222+222&fullnumber=%2B351922222222aaaaaaaaaaaa&referrer=http://openbugbounty.org&slug=+moneyconf17exhibitor17 -https://forms.collisionconf.com/gates Post data:...

1.1AI score
Exploits0
Hacker One
Hacker Oneadded 2016/09/28 6:11 p.m.30 views

WebSummit: Subdomain take over signup.websummit

Subdomain take over Hi, You have a subdomain aka signup.websummit.net that point to a third party service hosted on Heroku: wsv1.herokuapp.com. The nslookup command shows the DNS configuration. $ nslookup signup.websummit.net 8.8.8.8 Server: 8.8.8.8 Address: 8.8.8.853 Non-authoritative answer:...

0.3AI score
Exploits0
Openbugbounty
Openbugbountyadded 2016/09/26 9:10 p.m.7 views

forms.websummit.net Open Redirect vulnerability

Vulnerable URL: https://forms.websummit.net/gates Details: Description| Value ---|--- Patched:| Yes, at 29.09.2016 Latest check for patch:| 29.09.2016 21:58 GMT Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank| 24287 VIP website status:| Yes Check...

6.9AI score
Exploits0
Hacker One
Hacker Oneadded 2016/06/12 2:21 p.m.14 views

WebSummit: Time Based SQL injection in url parameter

There is possibility of inducing some time delay in the "url" parameter of the videos.websummit.com using the Benchmark and SQL queries, which could result in timeout for application upon huge delay induced into the application...

1AI score
Exploits0
Rows per page
Query Builder