darksecurity.de | Entries tagged as security

SSCHADV2014-004 - reg.ebay.com - Cross-site Scripting vulnerability

SSCHADV2014-005 - ocsnext.ebay.com - Open Redirect

Yahoo Bug Bounty Program Vulnerability #4 #5 #6 Cross-site Scripting vulnerabilities

Yahoo Bug Bounty Program Vulnerability #1 XSS on ads.yahoo.com

My experiences with the GiftCards.com Bug Bounty Program

SSCHADV2014-003 - Serendipity 1.7.5 (Backend) - Multiple security vulnerabilities

Posted by Stefan Schurtz on Monday, May 26. 2014

^Advisory:	reg.ebay.com – Cross-site Scripting vulnerability
Advisory ID:	SSCHADV2014-004
Author:	Stefan Schurtz
Affected Software:	Successfully tested on reg.ebay.com
Vendor URL:	http://www.ebay.com/
Vendor Status:	informed

======================
Vulnerability Description
======================

The website reg.ebay.com is prone to a cross-site Scripting vulnerability

Continue reading "SSCHADV2014-004 - reg.ebay.com - Cross-site Scripting vulnerability"

Posted by Stefan Schurtz on Saturday, May 24. 2014

^Advisory:	ocsnext.ebay.com – Open Redirect
Advisory ID:	SSCHADV2014-005
Author:	Stefan Schurtz
Affected Software:	Successfully tested on ocsnext.ebay.com
Vendor URL:	http://www.ebay.com/
Vendor Status:	fixed

======================
Vulnerability Description
======================

The website "ocsnext.ebay.com" is prone to open redirect with a special provided url

Continue reading "SSCHADV2014-005 - ocsnext.ebay.com - Open Redirect"

Posted by Stefan Schurtz on Saturday, March 8. 2014

In Jan ’14 I reported three Cross-site Scripting vulnerabilities to the Yahoo Bug Bounty Program. And I know, it is really really hard, but … again … no feedback or bounty :)

Screenshots:

XSS on ‘celebrity.yahoo.com‘	XSS on ‘movies.yahoo.com‘	XSS on ‘music.yahoo.com’

Here is the advisory:

Continue reading "Yahoo Bug Bounty Program Vulnerability #4 #5 #6 Cross-site Scripting vulnerabilities"

Posted by Stefan Schurtz on Saturday, March 8. 2014

In Nov ’13 I reported a Cross-site Scripting vulnerability to the Yahoo Bug Bounty Program. As for my other reports, I’ve got no response or feedback, so I wrote a message to them via email this time and so on … blah blah :)

To cut a long story short, for all my reports the communication with Yahoo was really bad and of course: No bounty!

It seems this XSS is fixed, so here is my advisory:

Continue reading "Yahoo Bug Bounty Program Vulnerability #1 XSS on ads.yahoo.com"

Posted by Stefan Schurtz on Tuesday, February 18. 2014

Since November 2013 I reported seven Cross-site Scripting vulnerabilities to the Giftcard Bug Bounty Program. Sadly, only one of them wasn’t a duplicate :-/. Strange? Perhaps, but not impossible given the simplicity of the vulnerabilities.

But, what I really don’t understand: Why do they still work until today?

Continue reading "My experiences with the GiftCards.com Bug Bounty Program"

February '23

Posted by Stefan Schurtz on Thursday, February 6. 2014

^Advisory:	Serendipity 1.7.5 (Backend) – Multiple security vulnerabilities
Advisory ID:	SSCHADV2014-003
Author:	Stefan Schurtz
Affected Software:	Successfully tested on Serendipity 1.7.5
Vendor URL:	http://www.s9y.org/
Vendor Status:	fixed

======================
Vulnerability Description
======================

The Serendipity 1.7.5 backend is prone to multiple security vulnerabilities

Continue reading "SSCHADV2014-003 - Serendipity 1.7.5 (Backend) - Multiple security vulnerabilities"