darksecurity.de | Entries tagged as store.apple.com

Skip to content

Entries tagged as store.apple.com

[Video] - SSCHADV2013-009 - store.apple.com - DOM based Cross-site Scripting vulnerability

Posted by Stefan Schurtz on Tuesday, June 11. 2013

Here is a video for my advisory "SSCHADV2013-009 – store.apple.com – DOM based Cross-site Scripting vulnerability"

And here is a link to the video on youtube: http://youtu.be/qlTZD3ri_wU

Enjoy yourself!

SSCHADV2013-009 - store.apple.com - DOM based Cross-site Scripting vulnerability

Posted by Stefan Schurtz on Tuesday, June 4. 2013

Advisory:	store.apple.com – DOM based Cross-site Scripting vulnerability
Advisory ID:	SSCHADV2013-009
Author:	Stefan Schurtz
Affected Software:	Successfully tested on store.apple.com
Vendor URL:	http://www.apple.com
Vendor Status:	fixed

======================
Vulnerability Description
======================

The website ‘store.apple.com’ is prone to a DOM based XSS vulnerability

Continue reading "SSCHADV2013-009 - store.apple.com - DOM based Cross-site Scripting vulnerability"

Sidebar

Calendar

Werbung

Exploit-DB updates by Offensive Security

[remote] SmartRG Router SR510n 2.6.13 - Remote Code Execution

Friday, November 11. 2022

[webapps] CVAT 2.0 - Server Side Request Forgery

Friday, November 11. 2022

[local] IOTransfer V4 - Unquoted Service Path

Friday, November 11. 2022

[remote] AVEVA InTouch Access Anywhere Secure Gateway 2020 R2 - Path Traversal

Friday, November 11. 2022

[remote] MSNSwitch Firmware MNT.2408 - Remote Code Execution

Friday, November 11. 2022

OpenBSD Journal

Game of Trees 0.83 released

Tuesday, January 31. 2023

Execute-only status report

Monday, January 30. 2023

Console screendumps

Saturday, January 28. 2023

Game of Trees 0.82 released.

Tuesday, January 24. 2023

amd64 execute-only committed to -current

Saturday, January 21. 2023

Game of Trees milestone

Friday, January 20. 2023

sshd random relinking at boot

Thursday, January 19. 2023

Game of Trees 0.80 released.

Tuesday, January 17. 2023

Testing wanted: execute-only on amd64

Sunday, January 15. 2023

Archives

Blog Administration

Open login screen

Imprint | Contact | Privacy Statement