Warning: opendir(/var/www/html/web1/serendipity/plugins/serendipity_event_dpsyntaxhighlighter/sh/3.0.83.2/scripts/): failed to open dir: No such file or directory in /var/www/html/web1/serendipity/plugins/serendipity_event_dpsyntaxhighlighter/serendipity_event_dpsyntaxhighlighter.php on line 26

Warning: Invalid argument supplied for foreach() in /var/www/html/web1/serendipity/plugins/serendipity_event_dpsyntaxhighlighter/serendipity_event_dpsyntaxhighlighter.php on line 170
Skip to content

SSCHADV2014-005 - ocsnext.ebay.com - Open Redirect

Advisory:
ocsnext.ebay.com – Open Redirect
Advisory ID:
SSCHADV2014-005
Author:
Stefan Schurtz
Affected Software:
Successfully tested on ocsnext.ebay.com
Vendor URL:
Vendor Status:
fixed
 
======================
Vulnerability Description
======================
 
The website "ocsnext.ebay.com" is prone to open redirect with a special provided url
 
Continue reading "SSCHADV2014-005 - ocsnext.ebay.com - Open Redirect"

Yahoo Bug Bounty Program Vulnerability #2 Open Redirect

In Dec ’13 I reported a Open Redirect (and two other vulnerabilities, first in Nov ’13) to the Yahoo Bug Bounty Program. Sadly, I’ve got no response or feedback for any of this issues,  so I wrote a new message to them (this time via email).
 
Last week they told me that Open redirects are no longer in scope of the bug bounty programm :-/
 
So here is my advisory for this issue:
 
 
Continue reading "Yahoo Bug Bounty Program Vulnerability #2 Open Redirect"

SSCHADV2013-003 - Omniture web analytics - Open Redirection vulnerability

Advisory:
Omniture web analytics – Open Redirection vulnerability
Advisory ID:
SSCHADV2013-003
Author:
Stefan Schurtz
Affected Software:
Successfully tested on paypal.112.2o7.net
Vendor URL:
Vendor Status:
fixed
 
======================
Vulnerability Description
======================
 
The ‘vmh’-Parameter in Omniture web analytics is prone to a Open Redirection vulnerability
 
Continue reading "SSCHADV2013-003 - Omniture web analytics - Open Redirection vulnerability"
Imprint | Contact | Privacy Statement

Warning: opendir(/var/www/html/web1/serendipity/plugins/serendipity_event_dpsyntaxhighlighter/sh/3.0.83.2/scripts/): failed to open dir: No such file or directory in /var/www/html/web1/serendipity/plugins/serendipity_event_dpsyntaxhighlighter/serendipity_event_dpsyntaxhighlighter.php on line 26

Warning: Invalid argument supplied for foreach() in /var/www/html/web1/serendipity/plugins/serendipity_event_dpsyntaxhighlighter/serendipity_event_dpsyntaxhighlighter.php on line 170