[FD] BlackBoard LMS (9.1.140152.0) Stored XSS/Arbitrary File Upload

Document Title: === BlackBoard LMS 9.1 (9.1.140152.0) Stored XSS/Arbitrary File Upload Product Description: === The Learning Management System has changed the way students and educators interact. Blackboard's LMS solutions offer much more than simple, classroom

[FD] ESPN Reflected XSS

Document Title: === Reflected XSS on ESPN site PoC: === 1) Navigate to the following URL: http://cdn.espn.com/core/standalone/webview?partial=%22%3E%3Cimg%20src%3D1%20onerror%3Dalert(1337)%3E%2F%2F=sc=en=us=ios 2) Note that the form alerts with the payload

[FD] SoapUI v5.3.0 Code Execution

Document Title: === SoapUI Arbitrary Code Execution via Malicious Project Product Description: === SoapUI is the world's most widely-used testing tool for SOAP and REST APIs. Write, run, integrate, and automate advanced API Tests with ease. Homepage:

Re: [FD] SoapUI v5.3.0 Code Execution

Hey, it's actually CVE-2017-16670. Could this be updated? Sorry about that. -Ismail On Tue, Feb 6, 2018 at 2:43 PM, Ismail Doe <ismail.sec@gmail.com> wrote: > Document Title: > === > SoapUI Arbitrary Code Execution via Malicious Project > >

[FD] Reflected XSS via Broken Link Checker v.1.11.8 WordPress Plugin

Document Title === Reflected XSS via `Broken Link Checker` v.1.11.8 WordPress plugin. Product Description === Broken Link Checker will monitor your blog looking for broken links and let you know if any are found. Homepage: https://managewp.com/ WordPress Plugin: