Loading HuntDB...

Vulnerability Intelligence by wss.sh

Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog Latest Updates Security News

More Sources

HackerOne Reports

Bug bounty disclosures

WordPress Vulnerabilities

WordPress plugins & themes

Tools & Data

Trending Insights

Popular vulnerabilities

Advanced Search

Filter & search CVEs

Product Inventory

Software & vendors

Sign In Sign Up

Informatica - HackerOne Reports

View on HackerOne

65

Total Reports

11

Critical

33

High

13

Medium

7

Low

[careers.informatica.com] Reflected Cross Site Scripting to XSS Shell Possible

Reported by: zephrfish | Disclosed:

High

Weakness: Command Injection - Generic

[careers.informatica.com] Cross Site Script Vulnerability on informatica

Reported by: gorkha | Disclosed:

High

Weakness: Cross-site Scripting (XSS) - Generic

accounts.informatica.com - RCE due to exposed Groovy console

Reported by: 0ang3el | Disclosed:

Critical

Weakness: Code Injection

Cross-site Scripting (XSS) - DOM - iqcard.informatica.com

Reported by: rodntt | Disclosed:

High

Weakness: Cross-site Scripting (XSS) - DOM

..; bypass leading to tomcat scripts [Unauthenticated]

Reported by: rodntt | Disclosed:

Medium

Weakness: Improper Access Control - Generic

[ipm.informatica.com]- Broken Authentication

Reported by: adminadminadmin | Disclosed:

High

Weakness: Improper Authentication - Generic

CVE-2021-40870 in [███]

Reported by: fdeleite | Disclosed:

Critical

Weakness: Code Injection

CVEs: CVE-2021-40870

XXE through injection of a payload in the XMP metadata of a JPEG file

Reported by: moebius | Disclosed:

Critical

Weakness: XML External Entities (XXE)

[community.informatica.com] - CSRF in Private Messages allows to move user's messages to Trash

Reported by: artem | Disclosed:

High

Weakness: Cross-Site Request Forgery (CSRF)

[alpha.informatica.com] Expensive DOMXSS

Reported by: albinowax | Disclosed:

Medium

Weakness: Cross-site Scripting (XSS) - Generic

[uk.informatica.com] XSS on uk.informatica..com

Reported by: grampae | Disclosed:

High

Weakness: Cross-site Scripting (XSS) - Generic

Cisco RCE

Reported by: neolead | Disclosed:

Critical

Weakness: Command Injection - Generic

[kb.informatica.com] Dom Based xss

Reported by: e3xpl0it | Disclosed:

Medium

Weakness: Cross-site Scripting (XSS) - Generic

[https://life.informatica.com] - information disclose

Reported by: modam3r5 | Disclosed:

High

Weakness: Information Disclosure

[informatica.com]- Cross Site scripting

Reported by: rotembar | Disclosed:

High

Weakness: Cross-site Scripting (XSS) - Generic

[mysupport.informatica.com] - reflected XSS

Reported by: mtk0308 | Disclosed:

High

Weakness: Cross-site Scripting (XSS) - Generic

[informatica.com]- Information Disclosure

Reported by: rotembar | Disclosed:

Medium

Weakness: Information Disclosure

F5 BIG-IP Cookie potentially reveal BigIP pool name, backend's IP address and port, routed domain.

Reported by: reebak | Disclosed:

Low

Weakness: Information Disclosure

SSRF on infawiki.informatica.com and infawikitest.informatica.com

Reported by: 0ang3el | Disclosed:

Medium

Weakness: Server-Side Request Forgery (SSRF)

Improper Sanitization leads to XSS Fire on admin panel

Reported by: montypythin | Disclosed:

High

Weakness: Cross-site Scripting (XSS) - Stored

Previous Page 2 of 4 Next