Tag Archives: Code Flaw

The New York Times Old Articles Can Be Exploited by XSS Attacks (Almost all Article Pages Before 2013 Are Affected)

Posted on 06/19/2015 by ITMATHFAN

Domain: http://www.nytimes.com/ “The New York Times (NYT) is an American daily newspaper, founded and continuously published in New York City since September 18, 1851, by the New York Times Company. It has won 114 Pulitzer Prizes, … Continue reading →

Posted in 0Day, Website Testing, XSS | Tagged 0Day-Bugs, Code Flaw, computer, computer exploit, cyber-intelligence, hacker, IEEE Research, internet, Internet News, jing wang, justqdjing, Nytimes.com, The New York Times, vulnerability, web, website, white-hat, XSS | Leave a comment

Mozilla Online Website Two Sub-Domains XSS (Cross-site Scripting) Bugs ( All URLs Under the Two Domains)

Posted on 06/19/2015 by ITMATHFAN

Domains: http://lxr.mozilla.org/ http://mxr.mozilla.org/ (The two domains above are almost the same) Websites information: “lxr.mozilla.org, mxr.mozilla.org are cross references designed to display the Mozilla source code. The sources displayed are those that are currently checked in to the … Continue reading →

Posted in Website Testing, XSS | Tagged 0Day-Bugs, Code Flaw, computer exploit, Cross-Site Scripting, cyber-intelligence, hacker, IEEE Research, Internet News, jing wang, Mozilla, mozilla.org, Two Sub-Domains, vulnerability, web, website, white-hat, XSS | Leave a comment

OSVDB 119342, 119323 NetCat CMS Multiple HTTP Response Splitting (CRLF) Web Security Vulnerabilities

Posted on 06/14/2015 by ITMATHFAN

OSVDB 119342, 119323 NetCat CMS Multiple HTTP Response Splitting (CRLF) Web Security Vulnerabilities Exploit Title: NetCat CMS Multiple CRLF Security Vulnerabilities Product: NetCat CMS (Content Management System) Vendor: NetCat Vulnerable Versions: 5.01 3.12 3.0 2.4 2.3 2.2 2.1 … Continue reading →

Posted in 0Day, CRLF, Web Application | Tagged 0day Bug, Code Flaw, Computer Science, crime prevention, CRLF, cyber-intelligence, exploit, Hacking Attack, HTTP Response Splitting, Internet Testing, IT-news, NetCat CMS, OSVDB 119342, OSVDB 119343, Vulnerabilities, Web Security, whitehat | Leave a comment

CVE-2014-8753 Cit-e-Net Multiple XSS (Cross-Site Scripting) Web Security Vulnerabilities

Posted on 06/06/2015 by ITMATHFAN

CVE-2014-8753 Cit-e-Net Multiple XSS (Cross-Site Scripting) Web Security Vulnerabilities Exploit Title: Cit-e-Net Multiple XSS (Cross-Site Scripting) Web Security Vulnerabilities Product: Cit-e-Access Vendor: Cit-e-Net Vulnerable Versions: Version 6 Tested Version: Version 6 Advisory Publication: February 12, 2015 Latest Update: June … Continue reading →

Posted in CVE, XSS | Tagged 0day-exploit, 2014-8753, Cit-e-Net, Code Flaw, computer bug, Cross-Site Scripting, cve, cyber-security, Hacking Prevention, Internet Testing, IT-news, justqdjing, Vulnerabilities, wang Jing, web application, Whitehat Report, XSS | Leave a comment

Gcon Tech Solutions v1.0 XSS (Cross-site Scripting) Web Security Vulnerabilities

Posted on 05/24/2015 by ITMATHFAN

Originally posted on IT Swift – Know IT News Swiftly:
? Gcon Tech Solutions v1.0 XSS (Cross-site Scripting) Web Security Vulnerabilities ? Exploit Title: Gcon Tech Solutions v1.0 content.php? &id Parameter XSS Security Vulnerabilities Product: Gcon Tech Solutions Vendor: Gcon…

Posted in 0Day, Hacker Exploit | Tagged 0day-exploit, application bug, attack prevention, Code Flaw, Computer Science, cyber-security, Gcon Tech, J.wang, justqdjing, may 23, scripting, Solutions, tetraph, v1.0, vulnerability, Web Security, whitehat-post, XSS | Leave a comment

76.3% WEATHER CHANNEL WEBSITE LINKS VULNERABLE TO REFLECTED CROSS-SITE SCRIPTING (XSS)

Posted on 12/20/2014 by ITMATHFAN

Popular Weather Channel web site (Weather.com) has been found to be vulnerable to a reflected Cross-Site Scripting flaw, according to security researcher Wang Jing’s research. The vulnerability lies in that Weather.com does not filter malicious script codes when … Continue reading →

Posted in 0Day, IT Information Technology, Website Testing | Tagged 0-day Exploit, Application Attack, Code Flaw, cyber-security, hacker-prevention, IT-news, JingWang, Vulnerability Discover, Weather Channel, Web Information, Website Testing, white-hat, XSS | Leave a comment

Articles of New York Times Before 2013 May Vulnerable to XSS Attacks

Posted on 11/10/2014 by ITMATHFAN

New York Times articles’ pages dated before 2013 may suffer from an XSS (Cross-site Scripting) vulnerability, according to the report posted by security researcher Wang Jing. Wang is a mathematics Ph.D student from School of Physical and Mathematical Sciences, … Continue reading →

Posted in Hacker Exploit, IT Computer & Web, Website Testing | Tagged 0-day XSS, Application Testing, Bug prevention, Code Flaw, cyber-security, IT-news, JingWang, New Vulnerability, New York Times, Web application information, Webpage Attack, whitehat | Leave a comment