Videos

Tue
25
Aug
Editorial_Staff_Team's picture

PayPal Inc patched medium severity Cross Site Request Forgery Issue

PayPal Inc patched medium severity Cross Site Request Forgery Issue

The independent and individual vulnerability laboratory researcher paresh parmar discovered during the participate in the official paypal bug bounty program a new client-side csrf vulnerability. The security issue was located in the official paypal inc notify online service web-application. The researcher recorded a video to demonstrate the full impact to the paypal notify service.

Video: http://www.vulnerability-lab.com/get_content.php?id=1584

Researcher Profile: http://www.vulnerability-lab.com/show.php?user=Paresh%20Parmar

Thu
13
Aug
Editorial_Staff_Team's picture

Shopify | Buy Button | Persistent Embed POST Inject Vulnerability

Shopify - Embed POST Inject Vulnerability

Vulnerability Lab found a Persistent Embed POST inject Vulnerability in the official shopify.com web application. The vulnerability allows attackers to create a "Buy Button" including malicious code. By embeding this button on an external page or if the button is displayed within the shopify market the code gets executed.

POC Video: Shopify Bug Bounty - (Buy Button) Persistent Embed POST Inject Vulnerability

Tue
11
Aug
Editorial_Staff_Team's picture

UBNT Bug Bounty #3 - Persistent Filename Vulnerability

UBNT Bug Bounty #3 - Persistent Filename Vulnerability

UBNT Bug Bounty #3 - Persistent Filename Vulnerability

The Vulnerability Laboratory Core Research Team discovered an application-side input validation web vulnerability in the official Ubiquiti Networks Community online service web-application.

Ubiquiti Networks is an American technology company started in 2005. Based in San Jose, California they are a manufacturer of wireless products whose primary focus is on under-served and emerging markets. (Copy of the Homepage: http://en.wikipedia.org/wiki/Ubiquiti_Networks )

Pages

Subscribe to RSS - Videos