Yahoo Online Website Unvalidated Redirects and Forwards 0Day Bugs

The vulnerability doesn’t even need users to login yahoo. The is on all browsers in all computer systems.     POC Video: http://www.youtube.com/watch?v=GTd1Gkj6OUY       A website is used for the following tests. The website is “http://www.tetraph.com/blog“.   Vulnerable… Continue Reading

Oracle Access Manager Webserver Plugin Subcomponent Unspecified Remote DoS CVE-2014-2052

Exploit Title: Oracle Access Manager Webserver Plugin Subcomponent Unspecified Remote DoS Product: Access Manager component in Oracle Fusion Middleware Vendor:    Oracle Vulnerable Versions: 10.1.4.3, 11.1.1.3.0, 11.1.1.5.0, 11.1.1.7.0, 11.1.2.0.0, 11.1.2.1.0, and 11.1.2.2.0 Advisory Publication: Apr 15, 2014 Latest Update:    Apr 15,… Continue Reading