Acknowledged By Nokia (Hall Of Fame) With Poc

<div dir="ltr" style="text-align: left;" trbidi="on"> I Reported Html Injection Bug To Nokia They Accept My Report And Decided To Provide Me Hall Of Fame.<br /> <br /> <b>About Html Injection Content From Owasp:-</b>Hypertext Markup Language (HTML) injection, also sometimes referred to as <i>virtual defacement</i>, is an attack on a user made possible by an injection vulnerability in a web application. When an application does not properly handle user supplied data, an attacker can supply valid HTML, typically via a parameter value, and inject their own content into the page.<br /> <br /> This attack is typically used in conjunction with some form of social engineering, as the attack is exploiting a code-based vulnerability and a user's trust.<br /> <br /> <b>Hall of fame link:-  </b><a href="http://networks.nokia.com/responsible-disclosure">http://networks.nokia.com/responsible-disclosure</a><br /> <br /> <div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEibH3w7UpXvl-N9vwi66HSjMov2Ij0pPw97ipugZ8emuSDXF_inttpxyTpTGhibdJ9wBVNOn0SXs-Tp4-44eZWqqW6esJI2ahBIUVnV9Y_js4QF3qzNPhyphenhyphenueQhknZHQTiuPKrje5LFxzxRu/s1600/11167685_1381812635481978_4617930359809391424_n.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="300" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEibH3w7UpXvl-N9vwi66HSjMov2Ij0pPw97ipugZ8emuSDXF_inttpxyTpTGhibdJ9wBVNOn0SXs-Tp4-44eZWqqW6esJI2ahBIUVnV9Y_js4QF3qzNPhyphenhyphenueQhknZHQTiuPKrje5LFxzxRu/s1600/11167685_1381812635481978_4617930359809391424_n.jpg" width="400" /> </a></div> <div class="separator" style="clear: both; text-align: center;"> <br /></div> <div class="separator" style="clear: both; text-align: center;"> <b>Nokia Html Injection Proof Of Concept Video Watch And Enjoy :D </b></div> <div class="separator" style="clear: both; text-align: center;"> <br /></div> <div class="separator" style="clear: both; text-align: center;"> <br /></div> <div style="text-align: center;"> <iframe allowfullscreen="" class="YOUTUBE-iframe-video" data-thumbnail-src="https://i.ytimg.com/vi/cAf0jGlVf5Y/0.jpg" frameborder="0" height="266" src="https://www.youtube.com/embed/cAf0jGlVf5Y?feature=player_embedded" width="320"></iframe></div> <br /> If you have any question related to this post then please drop your comment in comment box. and if you like my post then please share it with your friends because sharing is caring. </div>

• 
• 

1. 1
2. 2

• Previous
• Next

Acknowledged By Nokia (Hall Of Fame) With Poc

I Reported Html Injection Bug To Nokia They Accept My Report And Decided To Provide Me Hall Of Fame. About Html Injection Content From Owasp:-Hypertext Markup Language (HTML) injection, also sometime…

Read more »

Acknowledged By Google (Hall Of Fame)

<div dir="ltr" style="text-align: left;" trbidi="on"> <div class="separator" style="clear: both; text-align: center;"> </div> <div class="separator" style="clear: both; text-align: center;"> </div> <div class="separator" style="clear: both; text-align: center;"> </div> <div class="separator" style="clear: both; text-align: left;"> I Reported Frame Limit Protection Bypass Bug To Google They Accept My Report And Decided To Provide Me Hall Of Fame.</div> <div class="separator" style="clear: both; text-align: left;"> <br /></div> <div class="separator" style="clear: both; text-align: left;"> <b>What Is Frame Limit Protection:-</b>there is a protection regarding brute force and bots attacks is known as frame limit protection.</div> <div class="separator" style="clear: both; text-align: left;"> <br /></div> <div class="separator" style="clear: both; text-align: left;"> For Example:- in a simple language when you attempt 50 -60 wrong passwords on a website after that you got errors likes ( try after sometime, reset password, login limit exceeds )these error shows that there is a frame limit protection.</div> <div class="separator" style="clear: both; text-align: left;"> <br /></div> <div class="separator" style="clear: both; text-align: left;"> <b>Hall of fame link :-</b> <a href="http://www.google.com/about/appsecurity/hall-of-fame/archive">http://www.google.com/about/appsecurity/hall-of-fame/archive</a></div> <div class="separator" style="clear: both; text-align: center;"> <br /></div> <div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh5ySjx14Md4UwQLo0F0ghu3YKAVcTPwOztbFwg_nQfCqA3mBX0l3acm9ITuBsV_HjU5byZn6tcZ9slKVmIxAQoA9F_cdLUHaY1_j6ECftBXvaoWHtZhtrIGLLDoN6EtegoxcThCZaZYK56/s1600/ffffffff.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="240" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh5ySjx14Md4UwQLo0F0ghu3YKAVcTPwOztbFwg_nQfCqA3mBX0l3acm9ITuBsV_HjU5byZn6tcZ9slKVmIxAQoA9F_cdLUHaY1_j6ECftBXvaoWHtZhtrIGLLDoN6EtegoxcThCZaZYK56/s1600/ffffffff.jpg" width="320" /></a></div> <br /></div>

Acknowledged By Google (Hall Of Fame)

I Reported Frame Limit Protection Bypass Bug To Google They Accept My Report And Decided To Provide Me Hall Of Fame. What Is Frame Limit Protection:-there is a protection regarding brute force and bo…

Read more »

Microsoft's Skype Cross Site Scripting Bug

<div dir="ltr" style="text-align: left;" trbidi="on"> Hello readers i am ashish pathak today i am going to share my one of the best finding which i got in skype.<br /> <br /> <h3 style="text-align: center;"> I Got Cross Site Scripting Bug In Skype :D</h3> <h3 style="text-align: center;"> <b><br /></b></h3> <div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhvpt9yxxLk6dGy62puXhIvnCCvZkbnSme9Mb6iRsEfRPrnwmAcGtUHoXCV-j13oh5Q67p1V-5yWQkN8BxWBTBfHRXBNtj_Zc2idAN0F1GmCIBHlhvY15al51EaIR_xcVBBcM-KHi85-SDU/s1600/jhgj.JPG" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="300" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhvpt9yxxLk6dGy62puXhIvnCCvZkbnSme9Mb6iRsEfRPrnwmAcGtUHoXCV-j13oh5Q67p1V-5yWQkN8BxWBTBfHRXBNtj_Zc2idAN0F1GmCIBHlhvY15al51EaIR_xcVBBcM-KHi85-SDU/s1600/jhgj.JPG" width="400" /></a></div> <br /> <div class="separator" style="clear: both; text-align: center;"> </div> <div class="separator" style="clear: both; text-align: center;"> </div> <br /> <span class="_Tgc"><b>What Is Cross Site Scripting :- </b></span><br /> <br /> <span class="_Tgc"><b>Google Says Cross</b>-<b>site scripting</b> (<b>XSS</b>) is a type of computer security vulnerability typically found in Web applications. <b>XSS</b> enables attackers to inject client-side <b>script</b> into Web pages viewed by other users. A <b>cross</b>-<b>site scripting</b> vulnerability may be used by attackers to bypass access controls such as the same-origin policy.</span><br /> <br /> <h3 style="text-align: center;"> <span class="_Tgc">Proof Of Concept Full Video Watch In HD </span></h3> <div class="separator" style="clear: both; text-align: center;"> <br /></div> <div style="text-align: center;"> <iframe allowfullscreen="" class="YOUTUBE-iframe-video" data-thumbnail-src="https://i.ytimg.com/vi/96Lf-HZyUDc/0.jpg" frameborder="0" height="266" src="https://www.youtube.com/embed/96Lf-HZyUDc?feature=player_embedded" width="320"></iframe></div> <br /> <div style="text-align: left;"> When i reported about this bug to microsoft they accept my report and decided to provide me  hall of fame. and my reaction is.<br /> <br /></div> <div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgYRioygaCL14V86v4xCWftjkAwLbiaLc3Ynl-7_VY_o95yVn6MafrHwnvi7w_wEq71Fengq33_UQ3AM_x1nW-9PIsSIzyNRM1aXCldtZzBOUbjHN9XQiFxO_F8u-16_FtyBz_Zbl3Hq411/s1600/nacho+bc+Desi+Emotion+nana.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="400" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgYRioygaCL14V86v4xCWftjkAwLbiaLc3Ynl-7_VY_o95yVn6MafrHwnvi7w_wEq71Fengq33_UQ3AM_x1nW-9PIsSIzyNRM1aXCldtZzBOUbjHN9XQiFxO_F8u-16_FtyBz_Zbl3Hq411/s1600/nacho+bc+Desi+Emotion+nana.jpg" width="289" /> </a></div> <div class="separator" style="clear: both; text-align: center;"> <br /></div> <div class="separator" style="clear: both; text-align: left;"> Thanks for reading if you have any question related to bug hunting or anything else then please drop your comments in comment box ...</div> <br /> <br /></div>

• 
• 
• 

1. 1
2. 2
3. 3

• Previous
• Next

Microsoft's Skype Cross Site Scripting Bug

Hello readers i am ashish pathak today i am going to share my one of the best finding which i got in skype. I Got Cross Site Scripting Bug In Skype :D What Is Cross Site Scripting :- Google Says Cro…

Read more »

Again Acknowledged By ESET (T-shirt)

<div dir="ltr" style="text-align: left;" trbidi="on"> I Reported Cross Site Scripting Bug To Eset They Accept My Report And Decided To Provide Me Certificate And T-shirt.<br /> <br /> <span class="_Tgc"><b>Google Says Cross</b>-<b>site scripting</b> (<b>XSS</b>) is a type of computer security vulnerability typically found in Web applications. <b>XSS</b> enables attackers to inject client-side <b>script</b> into Web pages viewed by other users. A <b>cross</b>-<b>site scripting</b> vulnerability may be used by attackers to bypass access controls such as the same-origin policy.</span><br /> <br /> <br /> <div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg-pBbCqit_LeluE-OCTx1DzIjkT3LV0897mme0iWmrSl2a1y-xXObF4bSEFet7KW5U9pnWwPaVRdRPxnA3MPkb_IBBHSmXo2qwdrwwTj56Ol3wQKXBM8Jn2WbZrprU94eyG4KAhtQR-xbF/s1600/11130401_1377553922574516_8888911621322744611_o.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="300" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg-pBbCqit_LeluE-OCTx1DzIjkT3LV0897mme0iWmrSl2a1y-xXObF4bSEFet7KW5U9pnWwPaVRdRPxnA3MPkb_IBBHSmXo2qwdrwwTj56Ol3wQKXBM8Jn2WbZrprU94eyG4KAhtQR-xbF/s1600/11130401_1377553922574516_8888911621322744611_o.jpg" width="400" /></a></div> <br /> <br /></div>

Again Acknowledged By ESET (T-shirt)

I Reported Cross Site Scripting Bug To Eset They Accept My Report And Decided To Provide Me Certificate And T-shirt. Google Says Cross-site scripting (XSS) is a type of computer security vulnerabilit…

Read more »

Acknowledged By Mail Chimp (Hall Of Fame)

<div dir="ltr" style="text-align: left;" trbidi="on"> <span class="_Tgc"><b>I Reported Cross Site Scripting Bug To Mail Chimp They Accept My Report And Provide Me Hall Of Fame And Stickers</b></span><br /> <br /> <span class="_Tgc"><b>Google Says Cross</b>-<b>site scripting</b> (<b>XSS</b>) is a type of computer security vulnerability typically found in Web applications. <b>XSS</b> enables attackers to inject client-side <b>script</b> into Web pages viewed by other users. A <b>cross</b>-<b>site scripting</b> vulnerability may be used by attackers to bypass access controls such as the same-origin policy.</span><br /> <br /> <span class="_Tgc">Link:- <a href="http://mailchimp.com/about/security-response/">http://mailchimp.com/about/security-response/</a></span><br /> <br /> <div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj7YP1er9Zw9wlo0_x-4z2gxYtdd3nJ8ikFWHZNcrlC7Hb6yKEGO-u8T8LEmwyXZcBrPvKbViA4Z-w_ZH7VtisgBenzAuZbgP481NCIKt3T0E8xt3pMdYc_RDTpaUua-yH5kxSnMFscdd85/s1600/dgdg.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="300" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj7YP1er9Zw9wlo0_x-4z2gxYtdd3nJ8ikFWHZNcrlC7Hb6yKEGO-u8T8LEmwyXZcBrPvKbViA4Z-w_ZH7VtisgBenzAuZbgP481NCIKt3T0E8xt3pMdYc_RDTpaUua-yH5kxSnMFscdd85/s1600/dgdg.JPG" width="400" /></a></div> </div>

Acknowledged By Mail Chimp (Hall Of Fame)

I Reported Cross Site Scripting Bug To Mail Chimp They Accept My Report And Provide Me Hall Of Fame And Stickers Google Says Cross-site scripting (XSS) is a type of computer security vulnerability ty…

Read more »

Acknowledged By At & T (Hall Of Fame)

<div dir="ltr" style="text-align: left;" trbidi="on"> I Reported Privilege Escalation Bug To Att They Accept My Report And Decided To Provide Me Hall Of Fame.<br /> <br /> Link:- <a href="https://bugbounty.att.com/hof.php">https://bugbounty.att.com/hof.php</a><br /> <br /> <span class="_Tgc"><b>Google Says Privilege escalation</b> is the act of exploiting a bug, design flaw or configuration oversight in an operating system or software application to gain elevated access to resources that are normally protected from an application or user.</span> <br /> <br /> <br /> <div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh3MhuPoGxJK29NjLnT_v-yfcyODuSyJUyjanHC_nqHyHb-FwiynbWePo8kkfp_ywQeN33T2DQVApi1uNCdgOEj2ggWDG0pSd0gEbN7PkN9-0uxc0rW0Ckd4kKsOx2fG_1nL-LPcWdbzoXJ/s1600/dgdg.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="300" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh3MhuPoGxJK29NjLnT_v-yfcyODuSyJUyjanHC_nqHyHb-FwiynbWePo8kkfp_ywQeN33T2DQVApi1uNCdgOEj2ggWDG0pSd0gEbN7PkN9-0uxc0rW0Ckd4kKsOx2fG_1nL-LPcWdbzoXJ/s1600/dgdg.JPG" width="400" /></a></div> <br /></div>

Acknowledged By At & T (Hall Of Fame)

I Reported Privilege Escalation Bug To Att They Accept My Report And Decided To Provide Me Hall Of Fame. Link:- https://bugbounty.att.com/hof.php Google Says Privilege escalation is the act of exploi…

Read more »

Acknowledged By Sky Tv (Hall Of Fame)

<div dir="ltr" style="text-align: left;" trbidi="on"> <b> I Reported </b><b><span class="_Tgc"><b>Sql Injection </b></span>Bug To Sky Tv </b><b>They Accept My Report And Provide Me Hall Of Fame.</b><br /> <br /> <span class="_Tgc"><b>Google Says SQL injection</b> is a code <b>injection</b> technique, used to attack data-driven applications, in which malicious <b>SQL</b> statements are inserted into an entry field for execution (e.g. to dump the database contents to the attacker).</span><br /> <br /> <b>Link:- https://skytv.custhelp.com/app/answers/detail/a_id/1797/~/responsible-disclosure-guidelines</b><br /> <div class="separator" style="clear: both; text-align: center;"> <b><br /></b></div> <br /> <div class="separator" style="clear: both; text-align: center;"> <b><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhDBAaT_jaakUyocxbCKx64b3zcAKdVDwGPMcpm_4ta51J6cgY-wRxk5ObJUkj5togJ6FCAH4qylgb-2VKclwiA9ueQNMCwuvoI8AA05QPLLedq0mgIqQvhyphenhyphenisKK_CMI7AbVwhxk6PjZ04/s1600/skytv.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="236" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhDBAaT_jaakUyocxbCKx64b3zcAKdVDwGPMcpm_4ta51J6cgY-wRxk5ObJUkj5togJ6FCAH4qylgb-2VKclwiA9ueQNMCwuvoI8AA05QPLLedq0mgIqQvhyphenhyphenisKK_CMI7AbVwhxk6PjZ04/s1600/skytv.JPG" width="400" /></a></b></div> <b> </b></div>

Acknowledged By Sky Tv (Hall Of Fame)

I Reported Sql Injection Bug To Sky Tv They Accept My Report And Provide Me Hall Of Fame. Google Says SQL injection is a code injection technique, used to attack data-driven applications, in which m…

Read more »