Monthly Archives: September 2014

Sina OAuth 2.0 Service Covert Redirect Web Security Bugs (Information Leakage & Open Redirect)

  Sina OAuth 2.0 Service Covert Redirect Web Security Bugs (Information Leakage & Open Redirect)   (1) Domain: sina.com     “Sina (新浪) is a Chinese online media company for Chinese communities around the world. Sina operates four major business … Continue reading

Posted in 0Day, Covert Redirect, Website Testing | Tagged , , , , | Leave a comment

Continúan los problemas: OAuth y OpenID también son vulnerables, Covert Redirect

Originally posted on INZEED Business Information & Counsel:
Continúan los problemas: OAuth y OpenID también son vulnerables, Covert Redirect Un nuevo fallo de seguridad amenaza Internet. En este caso se trata de Covert Redirect y ha sido descubierto por un…

Posted in 0Day, IT Computer & Web | Tagged , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , | Leave a comment

CVE-2014-7292 Newtelligence dasBlog Dest Redirect Privilege Escalation Security Vulnerability

Originally posted on INZEED Business Information & Counsel:
CVE-2014-7292 Newtelligence dasBlog Dest Redirect Privilege Escalation Security Vulnerability       Exploit Title: Newtelligence dasBlog Dest Redirect Privilege Escalation Vulnerability Product: dasBlog Vendor:    Newtelligence Vulnerable Versions: 2.3 (2.3.9074.18820) 2.2 (2.2.8279.16125) 2.1(2.1.8102.813) Tested…

Posted in IT Computer & Web | Tagged , , , , , , , , , , , , , , , , , , , | Leave a comment

CVE-2014-7294 NYU OpenSSO Integration Open Redirect Security Vulnerability

Originally posted on Blog Related to IT, Science, Math, etc:
Exploit Title: NYU OpenSSO Integration Logon Page url Parameter Open Redirect Product: OpenSSO Integration Vendor: NYU Vulnerable Versions: 2.1 and probability prior Tested Version: 2.1 Advisory Publication: DEC 29, 2014 Latest…

Posted in Articles | Tagged , , , , , , , , , , , , , , , , , , , | Leave a comment