Softbank, NTT Docomo, KDDI Security Vulnerabilities
Vulnerable URL: http://www.3m.com.py/3M/es_PY/inicio/todos-los-productos-3m/?N=5002385+8711017&Ntt;=%3Cscript%3Ealert%28%22XSSPOSED%22%29%3C%2Fscript%3E&LC;=es_PY&co;=cc&gsaAction;=scBR&rt;=rs&type;=cc Details: Description| Value ---|--- Patched:| Yes, at 01.10.2016 Latest check for patch:|...
6.3AI Score
Vulnerable URL: http://www.3m.com.pe/3M/es_PE/inicio/todos-los-productos-3m/?N=5002385+8711017&Ntt;=%3Cscript%3Ealert%28%22XSSPOSED%22%29%3C%2Fscript%3E&LC;=es_PE&co;=cc&gsaAction;=scBR&rt;=rs&type;=cc Details: Description| Value ---|--- Patched:| Yes, at 01.10.2016 Latest check for patch:|...
6.3AI Score
Vulnerable URL: http://www.3m.com.tt/3M/en_TT/company-tt/all-3m-products/?N=5002385+8711017&Ntt;=%3Cscript%3Ealert%28%22XSSPOSED%22%29%3C/script%3E&LC;=en_TT&co;=cc&gsaAction;=scBR&rt;=rs&type;=cc Details: Description| Value ---|--- Patched:| Yes, at 01.10.2016 Latest check for patch:| 01.10.2016.....
6.3AI Score
Vulnerable URL: http://www.3m.com.uy/3M/es_UY/inicio/todos-los-productos-3m/?N=5002385+8711017&Ntt;=%3Cscript%3Ealert%28%22XSSPOSED%22%29%3C%2Fscript%3E&LC;=es_UY&co;=cc&gsaAction;=scBR&rt;=rs&type;=cc Details: Description| Value ---|--- Patched:| Yes, at 01.10.2016 Latest check for patch:|...
6.2AI Score
Vulnerable URL: http://www.3m.com.ve/3M/es_VE/inicio/todos-los-productos-3m/?N=5002385+8711017&Ntt;=%3Cscript%3Ealert%28%22XSSPOSED%22%29%3C%2Fscript%3E&LC;=es_VE&co;=cc&gsaAction;=scBR&rt;=rs&type;=cc Details: Description| Value ---|--- Patched:| Yes, at 01.10.2016 Latest check for patch:|...
6.3AI Score
3mbelgique.be XSS vulnerability
Vulnerable URL: http://www.3mbelgique.be/3M/fr_BE/company-base-bnl/all-3m-products/?Ntt=%3Cscript%3Ealert%28%22XSSPOSED%22%29%3C%2Fscript%3E&LC;=fr_BE&co;=cc&gsaAction;=scBR&rt;=rs&type;=cc Details: Description| Value ---|--- Patched:| Yes, at 01.10.2016 Latest check for patch:| 01.10.2016 10:46...
6.3AI Score
Vulnerable URL: http://www.3mcesko.cz/3M/cs_CZ/company-ctl/all-3m-products/?Ntt=%3Cscript%3Ealert%28%22XSSPOSED%22%29%3C%2Fscript%3E&LC;=cs_CZ&co;=cc&gsaAction;=scBR&rt;=rs&type;=cc Details: Description| Value ---|--- Patched:| Yes, at 01.10.2016 Latest check for patch:| 01.10.2016 10:45 GMT...
6.3AI Score
Vulnerable URL: http://www.3mfrance.fr/3M/fr_FR/notre-societe-fr/tous-les-produits-3M/?N=5002385+8711017&Ntt;=%3Cscript%3Ealert%28%22XSSPOSED%22%29%3C%2Fscript%3E&LC;=fr_FR&co;=cc&gsaAction;=scBR&rt;=rs&type;=cc Details: Description| Value ---|--- Patched:| Yes, at 01.10.2016 Latest check for...
6.2AI Score
3mmagyarorszag.hu XSS vulnerability
Vulnerable URL: http://www.3mmagyarorszag.hu/3M/hu_HU/company-ctl/all-3m-products/?N=5002385+8711017&Ntt;=%3Cscript%3Ealert%28%22XSSPOSED%22%29%3C%2Fscript%3E&LC;=hu_HU&co;=cc&gsaAction;=scBR&rt;=rs&type;=cc Details: Description| Value ---|--- Patched:| Yes, at 01.10.2016 Latest check for patch:|.....
6.3AI Score
3mnederland.nl XSS vulnerability
Vulnerable URL: http://www.3mnederland.nl/3M/nl_NL/company-base-bnl/all-3m-products/?Ntt=%3Cscript%3Ealert%28%22XSSPOSED%22%29%3C%2Fscript%3E&LC;=nl_NL&co;=cc&gsaAction;=scBR&rt;=rs&type;=cc Details: Description| Value ---|--- Patched:| Yes, at 01.10.2016 Latest check for patch:| 01.10.2016 10:38.....
6.3AI Score
Vulnerable URL: http://www.3mpolska.pl/3M/pl_PL/firma-pl/all-3m-products/?N=5002385+8711017&Ntt;=%3Cscript%3Ealert%28%22XSSPOSED%22%29%3C%2Fscript%3E&LC;=pl_PL&co;=cc&gsaAction;=scBR&rt;=rs&type;=cc Details: Description| Value ---|--- Patched:| Yes, at 01.10.2016 Latest check for patch:|...
6.3AI Score
Vulnerable URL: http://www.3mrussia.ru/3M/ru_RU/company-ru/all-3m-products/?Ntt=%3Cscript%3Ealert%28%22XSSPOSED%22%29%3C%2Fscript%3E&LC;=ru_RU&co;=cc&gsaAction;=scBR&rt;=rs&type;=cc Details: Description| Value ---|--- Patched:| Yes, at 01.10.2016 Latest check for patch:| 01.10.2016 10:35 GMT...
6.2AI Score
Vulnerable URL: http://www.3m.com.es/3M/es_ES/empresa-es/todos-productos-3m/?N=5002385+8711017&Ntt;=%3Cscript%3Ealert%28%22XSSPOSED%22%29%3C%2Fscript%3E&LC;=es_ES&co;=cc&gsaAction;=scBR&rt;=rs&type;=cc Details: Description| Value ---|--- Patched:| Yes, at 01.10.2016 Latest check for patch:|...
6.3AI Score
Vulnerable URL: http://www.3m.com.au/3M/en_AU/company-au/all-3m-products/?N=5002385+8711017&Ntt;=%3Cscript%3Ealert%28%22XSSPOSED%22%29%3C%2Fscript%3E&LC;=en_AU&co;=cc&gsaAction;=scBR&rt;=rs&type;=cc Details: Description| Value ---|--- Patched:| Yes, at 01.10.2016 Latest check for patch:|...
6.3AI Score
Vulnerable URL: http://www.3m.com.tr/3M/tr_TR/turkiye-tr/tum-urunler/?N=5002385+8711017&Ntt;=%3Cscript%3Ealert%28%22XSSPOSED%22%29%3C%2Fscript%3E&LC;=tr_TR&co;=cc&gsaAction;=scBR&rt;=rs&type;=cc Details: Description| Value ---|--- Patched:| Yes, at 01.10.2016 Latest check for patch:| 01.10.2016...
6.3AI Score
Vulnerable URL: http://www.cengage.com/search/productOverview.do?Ntt=&N;=197&Ntk;=APG||P_EPI&Ntx;=mode Details: Description| Value ---|--- Patched:| Yes, at 01.06.2016 Latest check for patch:| 01.06.2016 17:51 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 4258.....
6.2AI Score
Vulnerable URL: http://www.avery.com/avery/en_us/Search/?dimsearch=true&N;=0&Ntk;=All&Ntx;=mode+matchall&Nty;=0&Nr;=AND(SITESCHANNELS:Avery.com)&msearch;=true&Ntt;=63018";alert(/XSSPOSED/)// Details: Description| Value ---|--- Patched:| Yes, at 23.11.2017 Latest check for patch:| 23.11.2017 20:58.....
6.3AI Score
walgreens.com XSS vulnerability
Vulnerable URL: http://www.walgreens.com/search/results.jsp?Ntt=%3Cimg+src=x+onerror=prompt(/XSSPOSED/)%3E Details: Description| Value ---|--- Patched:| Yes, at 04.10.2017 Latest check for patch:| 04.10.2017 13:04 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank|...
6.2AI Score
Vulnerable URL: http://www.3m.com/3M/en_US/company-us/all-3m-products/?rt=rs&N;=5002385+8711017&Ntt;='"> Details: Description| Value ---|--- Patched:| Yes, at 27.12.2016 Latest check for patch:| 27.12.2016 05:39 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank|.....
6.3AI Score
6.9AI Score
etnet.com.hk XSS vulnerability
Vulnerable URL: http://www.etnet.com.hk/www/tc/home/index.php?Ntt=%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 3511 Google Pagerank| 5 VIP website status:| Yes...
6.3AI Score
biblegateway.christianbook.com XSS vulnerability
Open Bug Bounty ID: OBB-134308 Description| Value ---|--- Affected Website:| biblegateway.christianbook.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS (Cross Site Scripting) / CWE-79 CVSSv3 Score:| 6.1....
0.1AI Score
KDDI HOME SPOT CUBE devices before 2 allow remote authenticated users to execute arbitrary OS commands via unspecified...
4.7CVSS
5.3AI Score
0.002EPSS
KDDI HOME SPOT CUBE devices before 2 allow remote authenticated users to execute arbitrary OS commands via unspecified...
4.7CVSS
5.9AI Score
0.002EPSS
KDDI HOME SPOT CUBE devices before 2 allow remote attackers to conduct clickjacking attacks via unspecified...
6.1CVSS
6.3AI Score
0.002EPSS
Cross-site request forgery (CSRF) vulnerability on KDDI HOME SPOT CUBE devices before 2 allows remote attackers to hijack the authentication of unspecified victims via unknown...
7.5CVSS
7.9AI Score
0.002EPSS
Cross-site request forgery (CSRF) vulnerability on KDDI HOME SPOT CUBE devices before 2 allows remote attackers to hijack the authentication of unspecified victims via unknown...
7.5CVSS
7.8AI Score
0.002EPSS
KDDI HOME SPOT CUBE devices before 2 allow remote attackers to conduct clickjacking attacks via unspecified...
6.1CVSS
6.5AI Score
0.002EPSS
CRLF injection vulnerability on KDDI HOME SPOT CUBE devices before 2 allows remote attackers to inject arbitrary HTTP headers via unspecified...
4.7CVSS
5.6AI Score
0.002EPSS
CRLF injection vulnerability on KDDI HOME SPOT CUBE devices before 2 allows remote attackers to inject arbitrary HTTP headers via unspecified...
4.7CVSS
5AI Score
0.002EPSS
Open redirect vulnerability on KDDI HOME SPOT CUBE devices before 2 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified...
7.4CVSS
7.3AI Score
0.003EPSS
Open redirect vulnerability on KDDI HOME SPOT CUBE devices before 2 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified...
7.4CVSS
7.4AI Score
0.003EPSS
Cross-site scripting (XSS) vulnerability on KDDI HOME SPOT CUBE devices before 2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified...
5.4CVSS
5.1AI Score
0.001EPSS
Cross-site scripting (XSS) vulnerability on KDDI HOME SPOT CUBE devices before 2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified...
5.4CVSS
5.4AI Score
0.001EPSS
Open redirect vulnerability on KDDI HOME SPOT CUBE devices before 2 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified...
7.4CVSS
7.3AI Score
0.003EPSS
Cross site request forgery (csrf)
Cross-site request forgery (CSRF) vulnerability on KDDI HOME SPOT CUBE devices before 2 allows remote attackers to hijack the authentication of unspecified victims via unknown...
7.5CVSS
7.8AI Score
0.002EPSS
KDDI HOME SPOT CUBE devices before 2 allow remote authenticated users to execute arbitrary OS commands via unspecified...
4.7CVSS
7.8AI Score
0.002EPSS
Cross-site scripting (XSS) vulnerability on KDDI HOME SPOT CUBE devices before 2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified...
5.4CVSS
5.7AI Score
0.001EPSS
CRLF injection vulnerability on KDDI HOME SPOT CUBE devices before 2 allows remote attackers to inject arbitrary HTTP headers via unspecified...
4.7CVSS
7.5AI Score
0.002EPSS
KDDI HOME SPOT CUBE devices before 2 allow remote attackers to conduct clickjacking attacks via unspecified...
6.1CVSS
7.3AI Score
0.002EPSS
Cross-site scripting (XSS) vulnerability on KDDI HOME SPOT CUBE devices before 2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified...
5.3AI Score
0.001EPSS
CRLF injection vulnerability on KDDI HOME SPOT CUBE devices before 2 allows remote attackers to inject arbitrary HTTP headers via unspecified...
5.3AI Score
0.002EPSS
Cross-site request forgery (CSRF) vulnerability on KDDI HOME SPOT CUBE devices before 2 allows remote attackers to hijack the authentication of unspecified victims via unknown...
7.9AI Score
0.002EPSS
KDDI HOME SPOT CUBE devices before 2 allow remote attackers to conduct clickjacking attacks via unspecified...
6.5AI Score
0.002EPSS
KDDI HOME SPOT CUBE devices before 2 allow remote authenticated users to execute arbitrary OS commands via unspecified...
5.6AI Score
0.002EPSS
Open redirect vulnerability on KDDI HOME SPOT CUBE devices before 2 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified...
7.4AI Score
0.003EPSS
laredoute.se XSS vulnerability
Vulnerable URL: http://www.laredoute.se/search?Ntk=All&Ntt;=');alert('xssposed Details: Description| Value ---|--- Patched:| Yes, at 26.07.2017 Latest check for patch:| 26.07.2017 16:05 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 127036 Google Pagerank| 0...
6.3AI Score
JVN#54686544: HOME SPOT CUBE multiple vulnerabilities
HOME SPOT CUBE provided by KDDI CORPORATION is a wireless LAN router. HOME SPOT CUBE contains multiple vulnerabilities listed below. Cross-site scripting - CVE-2016-1136 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:A/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N| Base Score: 4.3 CVSS v2|...
7.5CVSS
6.8AI Score
0.003EPSS
Vulnerable URL: http://www.irf.com/browse?Dy=1&Nty;=1&Ntt;=%22%3E%3Csvg%2Fonload%3Dalert%28%2FXSSPOSED%2F%29%3E Details: Description| Value ---|--- Patched:| Yes, at 26.07.2017 Latest check for patch:| 26.07.2017 12:49 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa...
6.3AI Score
JVN#47951769: Shoplat App for iOS issue in the verification of SSL certificates
Shoplat App for iOS provided by NTT DOCOMO contains an issue in the verification of the SSL server certificate. ## Impact A connection to a server using an invalid SSL server certificate can be estabilished without a warning. As a result, the user may not notice that a remote attacker is...
7.5CVSS
7AI Score
0.001EPSS