Tag Archives: singapore

The Weather Channel at Least 76.3% Links Vulnerable to XSS Attacks

      The Weather Channel at Least 76.3% Links Vulnerable to XSS Attacks     Domain Description: http://www.weather.com/   “The Weather Channel is an American basic cable and satellite television channel which broadcasts weather forecasts and weather-related news and … Continue reading

Posted in 0Day, Website Testing, XSS | Tagged , , , , , , , , , , , , , , , , | Leave a comment

CXSecurity WLB-2015040034 6kbbs v8.0 Multiple CSRF (Cross-Site Request Forgery) Web Security Vulnerabilities

  CXSecurity WLB-2015040034 6kbbs v8.0 Multiple CSRF (Cross-Site Request Forgery) Web Security Vulnerabilities   Exploit Title: 6kbbs Multiple CSRF (Cross-Site Request Forgery) Security Vulnerabilities Vendor: 6kbbs Product: 6kbbs Vulnerable Versions: v7.1 v8.0 Tested Version: v7.1 v8.0 Advisory Publication: April 02, … Continue reading

Posted in CSRF, CXSecurity, Web Application | Tagged , , , , , , , , , , , , , , , , , , , | Leave a comment

CVE-2015-2563 – Vastal I-tech phpVID 1.2.3 SQL Injection Web Security Vulnerabilities

CVE-2015-2563 – Vastal I-tech phpVID 1.2.3 SQL Injection Web Security Vulnerabilities Exploit Title: CVE-2015-2563 Vastal I-tech phpVID /groups.php Multiple Parameters SQL Injection Web Security Vulnerabilities Product: phpVID Vendor: Vastal I-tech Vulnerable Versions: 1.2.3 0.9.9 Tested Version: 1.2.3 0.9.9 Advisory Publication: … Continue reading

Posted in 0Day, SQL Injection, Website Testing | Tagged , , , , , , , , , , , , , , , , , , , , , | Leave a comment

CVE-2015-2349 – SuperWebMailer 5.50.0.01160 XSS (Cross-site Scripting) Web Security Vulnerabilities

CVE-2015-2349 – SuperWebMailer 5.50.0.01160 XSS (Cross-site Scripting) Web Security Vulnerabilities Exploit Title: CVE-2015-2349 – SuperWebMailer /defaultnewsletter.php” HTMLForm Parameter XSS Web Security Vulnerabilities Product: SuperWebMailer Vendor: SuperWebMailer Vulnerable Versions: 5.*.0.*   4.*.0.* Tested Version: 5.*.0.*   4.*.0.* Advisory Publication: March 11, … Continue reading

Posted in 0Day, Hacker Exploit | Tagged , , , , , , , , , , , , , , , , , , , , , , , , , , , | Leave a comment

CVE-2015-2209 – DLGuard Full Path Disclosure (Information Leakage) Web Security Vulnerabilities

CVE-2015-2209 – DLGuard Full Path Disclosure (Information Leakage) Web Security Vulnerabilities Exploit Title: DLGuard “/index.php?” “&c” parameter Full Path Disclosure Web Security Vulnerabilities Product: DLGuard Vendor: DLGuard Vulnerable Versions: v4.5 Tested Version: v4.5 Advisory Publication: January 18, 2015 Latest Update: … Continue reading

Posted in 0Day, CVE, FPD, Information Leakage, IT Computer & Web | Tagged , , , , , , , , , , , , , , , , , | Leave a comment

Все ссылки на New York Times со статьями До 2013 уязвимы к XSS атак

Все ссылки на New York Times со статьями До 2013 уязвимы к XSS атак   Ссылки на статьи в New York Times (NYT), опубликованных до 2013 были найдены, чтобы быть уязвимы для XSS (межсайтового сценария) атаки, способной выдавать код, который … Continue reading

Posted in 0Day, Web Security | Tagged , , , , , , , , , , , , , , , , , , , , , , , , , , , , | Leave a comment

Xuất hiện lỗ hổng Covert Redirect, bản sao của “Trái tim rỉ máu”

Originally posted on INZEED Business Information & Counsel:
Xuất hiện lỗ hổng Covert Redirect, bản sao của “Trái tim rỉ máu” Một nghiên cứu sinh tại trường Đại học Công nghệ Nanyang (Singapore) vừa phát hiện một lỗ hổng bảo…

Posted in Articles | Tagged , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , | Leave a comment