Skip to content

SSCHADV2013-002 - heise.de - Cross-site Scripting vulnerability

Advisory:
heise.de – Cross-site Scripting vulnerability
Advisory ID:
SSCHADV2013-002
Author:
Stefan Schurtz
Affected Software:
Successfully tested on heise.de
Vendor URL:
Vendor Status:
fixed
 
======================
Vulnerability Description
======================
 
http://www.heise.de is prone to a XSS vulnerability
 
Continue reading "SSCHADV2013-002 - heise.de - Cross-site Scripting vulnerability"

SSCHADV2013-001 - Websitebaker Add-on 'Concert Calendar 2.1.4' XSS & SQLi vulnerability

Advisory:
Websitebaker Add-on ‘Concert Calendar 2.1.4’ XSS & SQLi vulnerability
Advisory ID:
SSCHADV2013-001
Author:
Stefan Schurtz
Affected Software:
Successfully tested on Concert Calendar 2.1.4
Vendor URL:
Vendor Status:
fixed
 
======================
Vulnerability Description
======================
 
Websitebaker Add-on ‘Concert Calendar 2.1.4’ is prone to a XSS and SQLi vulnerability
 
Continue reading "SSCHADV2013-001 - Websitebaker Add-on 'Concert Calendar 2.1.4' XSS & SQLi vulnerability"
Imprint | Contact | Privacy Statement