darksecurity.de | Entries tagged as apple.com

Warning: opendir(/var/www/html/web1/serendipity/plugins/serendipity_event_dpsyntaxhighlighter/sh/3.0.83.2/scripts/): failed to open dir: No such file or directory in /var/www/html/web1/serendipity/plugins/serendipity_event_dpsyntaxhighlighter/serendipity_event_dpsyntaxhighlighter.php on line 26

Warning: Invalid argument supplied for foreach() in /var/www/html/web1/serendipity/plugins/serendipity_event_dpsyntaxhighlighter/serendipity_event_dpsyntaxhighlighter.php on line 170
Skip to content

Entries tagged as

[Video] - SSCHADV2013-009 - store.apple.com - DOM based Cross-site Scripting vulnerability

Posted by Stefan Schurtz on Tuesday, June 11. 2013

Here is a video for my advisory "SSCHADV2013-009 – store.apple.com – DOM based Cross-site Scripting vulnerability"

And here is a link to the video on youtube: http://youtu.be/qlTZD3ri_wU

Enjoy yourself!

SSCHADV2013-009 - store.apple.com - DOM based Cross-site Scripting vulnerability

Posted by Stefan Schurtz on Tuesday, June 4. 2013

Advisory:	store.apple.com – DOM based Cross-site Scripting vulnerability
Advisory ID:	SSCHADV2013-009
Author:	Stefan Schurtz
Affected Software:	Successfully tested on store.apple.com
Vendor URL:	http://www.apple.com
Vendor Status:	fixed

======================
Vulnerability Description
======================

The website ‘store.apple.com’ is prone to a DOM based XSS vulnerability

Continue reading "SSCHADV2013-009 - store.apple.com - DOM based Cross-site Scripting vulnerability"

Sidebar

Calendar

Werbung

Exploit-DB updates by Offensive Security

[webapps] Social Warfare WordPress Plugin 3.5.2 - Remote Code Execution (RCE)

Thursday, June 26. 2025

[remote] McAfee Agent 5.7.6 - Insecure Storage of Sensitive Information

Thursday, June 26. 2025

[webapps] Sitecore 10.4 - Remote Code Execution (RCE)

Thursday, June 26. 2025

[remote] Microsoft Excel 2024 Use after free - Remote Code Execution (RCE)

Thursday, June 26. 2025

[remote] freeSSHd 1.0.9 - Denial of Service (DoS)

Thursday, June 26. 2025

OpenBSD Journal

Game of Trees 0.115 released

Saturday, June 28. 2025

Game of Trees 0.114 released

Tuesday, June 24. 2025

Call for testing: bge/bnx/iavf/igc/ix/ixl/ngbe/pcn: ifq_restart() fix

Tuesday, June 24. 2025

j2k25 hackathon report from kn@: installer, low battery, and more

Monday, June 16. 2025

dhcpd(8): use UDP sockets instead of BPF

Friday, June 13. 2025

clang(1)/llvm/lld(1) updated to version 19

Thursday, June 12. 2025

Source code sandboxing

Wednesday, June 11. 2025

TearFree option backported to modesetting(4) driver

Tuesday, June 10. 2025

FFS optimizations with dirhash, as blogged by rsadowski@

Monday, June 9. 2025

Archives

Blog Administration

Open login screen

Imprint | Contact | Privacy Statement

Warning: opendir(/var/www/html/web1/serendipity/plugins/serendipity_event_dpsyntaxhighlighter/sh/3.0.83.2/scripts/): failed to open dir: No such file or directory in /var/www/html/web1/serendipity/plugins/serendipity_event_dpsyntaxhighlighter/serendipity_event_dpsyntaxhighlighter.php on line 26

Warning: Invalid argument supplied for foreach() in /var/www/html/web1/serendipity/plugins/serendipity_event_dpsyntaxhighlighter/serendipity_event_dpsyntaxhighlighter.php on line 170