[FD] Vesta Control Panel <= 0.9.8-15 - Persistent XSS Vulnerability

# Exploit Title :Vesta Control Panel <= 0.9.8-15 - Persistent XSS Vulnerability# Vendor Homepage   :http://www.vestacp.com# Version   :0.9.8-15# Exploit Author    :Necmettin COSKUN @babayarisi # Blog  :http://ha.cker.io# Discovery date    :16/02/2016# Tested on :Fedora23 - C

[FD] CVE-2016-2046 Cross Site Scripting in Sophos UTM 9

--- Vendor: --- Sophos (https://www.sophos.com) - Affected Products/Versions: - Product: Sophos UTM 9 Version: 9.350-12 with pattern version 92405 (potentially lower) Description:

[FD] Umbraco - The open source ASP.NET CMS Multiple Vulnerabilities

[image: Vulnerable Umbraco] Recently I got an assignment where I had to work on the Umbraco application - a free Open Source Content Management System built on the ASP.NET platform and is used by more than 2,25,000 websites. Wh

[FD] Cisco ASA VPN - Zero Day Exploit

# Exploit author: Juan Sacco - jsa...@exploitpack.com # Affected program: Cisco ASA VPN Portal - Zero Day # Cisco ASA VPN is prone to a XSS on the password recovery page. # This vulnerability can be used by an attacker to capture other user's credentials. # The password recovery form fails to filte

[FD] EBAY Bugbounty: Persistent DOM Based XSS on ebay.com

Hello all, Description: Persistent DOM based Cross Site Scripting on ebay.com domain. Disclosed to Ebay: January 2015 Fixed: February 2016 Vulnerability location: Every listing Who are able to create: Sellers Same origin policy bypass via postMessage Write-up: http://www.korznikov.com/2016/02/pe