Skip to content

Instantly share code, notes, and snippets.

Avatar

JoasA CyberSecurityUP

View GitHub Profile
View Public CVEs (Joas Antonio)
CVE -2018-18405:
O jQuery v2.2.2 permite o XSS por meio de um atributo onerror criado de um elemento IMG.
Reference: https://owasp.org/www-community/attacks/xss/ -
https://www.imperva.com/learn/application-security/cross-site-scripting-xss-attacks/ -
https://github.com/EdOverflow/bugbounty-cheatsheet/blob/master/cheatsheets/xss.md -
CVE-2019-19517:
Os dispositivos Intelbras RF1200 1.1.3 permitem que o CSRF faça a autenticação no
login.html sem a necessidade de acessar a interface de login, possibilitando força bruta e