关键字【Improper Access Control - Generic】的搜索结果共2430记录

公开时间 奖金 作者 标题 厂商 漏洞类型
2018-08-14 $2000.0 shahzad__sadiq Stored XSS on activity Shopify Cross-site Scripting (XSS) - Stored
2018-08-11 $ saneh Authorization Token is Not expiring After Logout Passit Improper Authentication - Generic
2018-08-11 $ paramdham Authentication Required When password change Passit Improper Authentication - Generic
2018-08-11 $ muon4 CSV-injection in export functionality Passit Command Injection - Generic
2018-08-10 $ cris_semmle Command Injection Vulnerability in win-fork/win-spawn Packages Node.js third-party modules Command Injection - Generic
2018-08-10 $ nickvergessen HTML injection with AutoComplete suggestions Nextcloud Cross-site Scripting (XSS) - Generic
2018-08-09 $ reed Malware in `active-support` gem RubyGems Command Injection - Generic
2018-08-08 $500.0 orange Improper Access Control on Onelogin in multi-layered architecture Uber Improper Access Control - Generic
2018-08-08 $256.0 fransrosen CSRF-tokens on pages without no-cache headers, resulting in ATO when using CloudFlare proxy (Web Cache Deception) Discourse Cross-Site Request Forgery (CSRF)
2018-08-08 $ yox Private API key leakage due to lack of access control Cloudflare Improper Access Control - Generic
2018-08-07 $ gdinar XSS on Saved Carts page Razer US Cross-site Scripting (XSS) - Reflected
2018-08-04 $5000.0 suresh1c Content spoofing and potential Cross-Site Scripting vulnerability on www.hackerone.com HackerOne Cross-site Scripting (XSS) - Generic
2018-08-04 $1000.0 droblin Augur UI data can be completely replaced by an attacker which can lead to fund and reputation loss Augur Client-Side Enforcement of Server-Side Security
2018-08-03 $1000.0 plover Gem signature forgery RubyGems Cryptographic Issues - Generic
2018-08-02 $384.0 crisph3ll Stored XSS via Chrome plugin Trello Cross-site Scripting (XSS) - Stored