GitHub Online Website OAuth 2.0 Covert Redirect Web Security Bugs (Information Leakage & Open Redirect)

  GitHub Online Website OAuth 2.0 Covert Redirect Web Security Bugs (Information Leakage & Open Redirect)     (1) Domain: github.com   “GitHub is a web-based Git repository hosting service, which offers all of the distributed revision control and source… Continue Reading

Sina OAuth 2.0 Service Covert Redirect Web Security Bugs (Information Leakage & Open Redirect)

  Sina OAuth 2.0 Service Covert Redirect Web Security Bugs (Information Leakage & Open Redirect)   (1) Domain: sina.com     “Sina (新浪) is a Chinese online media company for Chinese communities around the world. Sina operates four major business lines: Sina… Continue Reading

Continúan los problemas: OAuth y OpenID también son vulnerables

Un nuevo fallo de seguridad amenaza Internet. En este caso se trata de Covert Redirect y ha sido descubierto por un estudiante chino en Singapur. Las empresas tienen en sus manos solucionar este problema.     Cuando aún resuenan los… Continue Reading

6kbbs v8.0 XSS (Cross-site Scripting) Security Vulnerabilities

6kbbs v8.0 XSS (Cross-site Scripting) Security Vulnerabilities   Exploit Title: 6kbbs XSS (Cross-site Scripting) Security Vulnerabilities Vendor: 6kbbs Product: 6kbbs Vulnerable Versions: v7.1   v8.0 Tested Version: v7.1   v8.0 Advisory Publication: April 02, 2015 Latest Update: April 02, 2015… Continue Reading