Advisory:
|
reg.ebay.com – Cross-site Scripting vulnerability
|
Advisory ID:
|
SSCHADV2014-004
|
Author:
|
Stefan Schurtz
|
Affected Software:
|
Successfully tested on reg.ebay.com
|
Vendor URL:
|
|
Vendor Status:
|
informed
|
======================
Vulnerability Description
======================
The website reg.ebay.com is prone to a cross-site Scripting vulnerability
Continue reading "SSCHADV2014-004 - reg.ebay.com - Cross-site Scripting vulnerability"
Advisory:
|
ocsnext.ebay.com – Open Redirect
|
Advisory ID:
|
SSCHADV2014-005
|
Author:
|
Stefan Schurtz
|
Affected Software:
|
Successfully tested on ocsnext.ebay.com
|
Vendor URL:
|
|
Vendor Status:
|
fixed
|
======================
Vulnerability Description
======================
The website "ocsnext.ebay.com" is prone to open redirect with a special provided url
Continue reading "SSCHADV2014-005 - ocsnext.ebay.com - Open Redirect"
Advisory:
|
Serendipity 1.7.5 (Backend) – Multiple security vulnerabilities
|
Advisory ID:
|
SSCHADV2014-003
|
Author:
|
Stefan Schurtz
|
Affected Software:
|
Successfully tested on Serendipity 1.7.5
|
Vendor URL:
|
|
Vendor Status:
|
fixed
|
======================
Vulnerability Description
======================
The Serendipity 1.7.5 backend is prone to multiple security vulnerabilities
Continue reading "SSCHADV2014-003 - Serendipity 1.7.5 (Backend) - Multiple security vulnerabilities"
Advisory:
|
ssl.bing.com – Cross-site Scripting vulnerability
|
Advisory ID:
|
SSCHADV2013-012
|
Author:
|
Stefan Schurtz
|
Affected Software:
|
Successfully tested on ssl.bing.com
|
Vendor URL:
|
|
Vendor Status:
|
fixed
|
======================
Vulnerability Description
======================
The website ‘ssl.bing.com’ is prone to a Cross-site Scripting vulnerability

Continue reading "SSCHADV2013-012 - ssl.bing.com - Cross-site Scripting vulnerability"
Advisory:
|
Wordpress Plugin WP-Members 2.8.9 – Multiple Cross-site Scripting vulnerabilities
|
Advisory ID:
|
SSCHADV2014-001
|
Author:
|
Stefan Schurtz
|
Affected Software:
|
Successfully tested on WP-Members Version 2.8.9
|
Vendor URL:
|
|
Vendor Status:
|
fixed
|
======================
Vulnerability Description
======================
The Wordpress plugin "WP-Members 2.8.9" is prone to reflected and stored XSS vulnerabilities
Continue reading "SSCHADV2014-001 - Wordpress Plugin WP-Members Version 2.8.9 - Stored and reflected Cross-site Scripting vulnerabilities"
Posted by on
Advisory:
|
developer.mozilla.org - DOM based Cross-site Scripting vulnerability
|
Advisory ID:
|
SSCHADV2013-010
|
Author:
|
Stefan Schurtz
|
Affected Software:
|
Successfully tested on developer.mozilla.org
|
Vendor URL:
|
|
Vendor Status:
|
fixed
|
==========================
Vulnerability Description
==========================
The website 'developer.mozilla.org' is prone to a DOM based XSS vulnerability
Continue reading "SSCHADV2013-010 - developer.mozilla.org DOMbased Cross-site Scripting vulnerability"