:: Deepquest :: This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Category: XSS

exploit m$Security XSS

[webapps] – PrestaShop <= 1.5.1 Persistent XSS

PrestaShop

deepcoreNov 2, 2012

Apple exploit facebook hhu iphone m$Security software tools XSS

[papers] – [Hebrew] Digital Whisper Security Magazine #37

[Hebrew] Digital Whisper Security Magazine #37

deepcoreNov 1, 2012

exploit m$Security XSS

[webapps] – Endpoint Protector v4.0.4.2 Multiple Persistent XSS

Endpoint Protector v4.0.4.2 Multiple Persistent XSS

deepcoreNov 1, 2012

Apple exploit facebook iphone m$OSX security tools Privacy Security tools twitter XSS

Apple QuickTime Player 7.7.2 Crash

Apple QuickTime Player version 7.7.2 division by zero crash proof of concept exploit.

deepcoreOct 24, 2012

exploit m$Security XSS

[webapps] – White Label CMS v 1.5 CSRF w/ persistent XSS

White Label CMS v 1.5 CSRF w/ persistent XSS

deepcoreOct 22, 2012

exploit m$Security XSS

[webapps] – Movable Type Pro 5.13en Stored XSS Vulnerability

Movable Type Pro 5.13en Stored XSS Vulnerability

deepcoreOct 22, 2012

Android Apple exploit facebook iphone m$OSX security tools Privacy Security tools twitter XSS

DropBox iOS / Android App File Theft

DropBox version 1.4.6 on iOS, 2.0.1 on Android, and Google Drive version 1.0.1 on iOS suffer from a file theft vulnerability due to allowing arbitrary javascript to be executed inside of the privileged file zone.

deepcoreOct 20, 2012

exploit m$Security XSS