[FD] BulletProof Security 53.3 - Security Advisory - Multiple XSS Vulnerabilities

2016-05-10 Thread Onur Yilmaz
Information Advisory by Netsparker Name: Multiple XSS Vulnerabilities in BulletProof Security Affected Software : BulletProof Security Affected Versions: v53.3 and possibly below Vendor Homepage : https://wordpress.org/plugins/bulletproof-security/ Vulnerability Type :

[FD] LiteSpeed Web Server - Security Advisory - HTTP Header Injection Vulnerability

2016-01-20 Thread Onur Yilmaz
Information Advisory by Netsparker Name: HTTP Header Injection in LiteSpeed Web Server Affected Software : LiteSpeed Web Server Affected Versions: v5.1.0 and possibly below Vendor Homepage : https://www.litespeedtech.com/ Vulnerability Type : HTTP Header Injection Severity :

[FD] OpenCart Security Advisory - XSS Vulnerabiltiy - CVE-2015-4671

2016-01-08 Thread Onur Yilmaz
Information Advisory by Netsparker Name: XSS Vulnerability in OpenCart Affected Software : OpenCart Affected Versions: v2.1.0.1 and possibly below Vendor Homepage : http://www.opencart.com Vulnerability Type : Cross-site Scripting Severity : Important Status : Fixed CVE-ID :

[FD] TestLink Security Advisory - Multiple XSS Vulnerabilities - CVE-2015-7391

2015-10-08 Thread Onur Yilmaz
Information Advisory by Netsparker. Name: Multiple XSS Vulnerabilities in TestLink 1.9.13 Affected Software : TestLink Affected Versions: 1.9.1.3 and possibly below Vendor Homepage : http://testlink.org/ Vulnerability Type : Cross-site Scripting Severity : Important Status :

[FD] DataTables Security Advisory - XSS Vulnerability - CVE-2015-6584

2015-09-10 Thread Onur Yilmaz
ed 09/09/2015 - Advisory Released Credits & Authors These issues have been discovered by Onur Yilmaz while testing Netsparker Web Application Security Scanner (https://www.netsparker.com). About Netsparker Netsparker finds and reports se

[FD] Concrete5 Security Advisory - Multiple XSS Vulnerabilities - CVE-2015-2250

2015-05-13 Thread Onur Yilmaz
Information Advisory by Netsparker. Name: Multiple XSS Vulnerabilities in Concrete5 Affected Software : Concrete5 Affected Versions: 5.7.3.1 and possibly below Vendor Homepage : https://www.concrete5.org Vulnerability Type : Cross-site Scripting Severity : Important CVE-ID:

[FD] Wordpress Twenty Fifteen Theme - DOM XSS Vulnerability - CVE-2015-3429

2015-05-09 Thread Onur Yilmaz
Information Advisory by Netsparker. Name: DOM XSS Vulnerability in Twenty Fifteen WordPress Theme Affected Software : WordPress Affected Versions: 4.2.1 and probably below Vendor Homepage : https://wordpress.org/ and https://wordpress.org/themes/twentyfifteen/ Vulnerability

[FD] Banner Effect Header Security Advisory - XSS Vulnerability - CVE-2015-1384

2015-01-31 Thread Onur Yilmaz
Information Advisory by Netsparker. Name: XSS Vulnerability in Banner Effect Header Affected Software : Banner Effect Header Affected Versions: 1.2.7 and possibly below Vendor Homepage : https://wordpress.org/plugins/banner-effect-header/ Vulnerability Type : Cross-site Scripting

[FD] Blubrry PowerPress Security Advisory - XSS Vulnerability - CVE-2015-1385

2015-01-29 Thread Onur Yilmaz
Information Advisory by Netsparker Name: XSS Vulnerability in Blubrry PowerPress Affected Software : Blubrry PowerPress Affected Versions: 6.0 and possibly below Vendor Homepage : https://wordpress.org/plugins/powerpress/ Vulnerability Type : Cross-site Scripting Severity : Important