Automattic: GET /api/v2/url_info endpoint is vulnerable to Blind SSRF

Summary: GET /api/v2/urlinfo endpoint is vulnerable to Blind SSRF. I am able to hit both Internal and External services via url parameter by replacing with internal and external url. Platforms Affected: https://www.tumblr.com/ Steps To Reproduce: 1. Login to https://www.tumblr.com/ 2. Follow any...

OLX: Cross Site Scripting -> Reflected XSS

Steps:- 1. Go to http://www.olx.ba/pretraga?trazilica="PAYLOAD" 2.Payload :- "onmousemove=alert"XSSBYJASHWANTH" " 3. You will get Pop up 4. If the script should be trusted or not, it will execute the script in the user context allowing the attacker to access any cookies or session tokens retained...

LearnVest Cross Site Scripting

Exploit Title: LearnVest Web Application - Stored Cross-Site Scripting XSS Date: 07/04/16 Exploit Author: Omkar Joshi Vendor Homepage: https://www.learnvest.com Version: Latest Contacted Vendor Date: 07/04/16 Affected URL:- https://www.learnvest.com/mylv/money//settings/account My Profile Attack...

Manage Engine Desktop Central 9.1.0 Build 91099 XSS

Overview----------------------------------------------------------------------------------------------------------------------------- Vendor: Manage Engine Vulnerable Product: Desktop Central v.9.1.0 Build 91099 Vulnerability Type : Reflected Cross Site Scripting Vulnerability Vulnerable Version ...

SoftMaker Shop is vulnerable to XSS

Inputs in the SoftMaker Shop is not properly sanitized, and XSS is possible in a lot of the systems input fields and url parameters. Some fields have been filtered in a basic form, so that simple scripting like "scriptalert'XSS'/script" is not possible. However, since the filtering is not based o...