Hacktivity

Text-Based Injection(TBI)

Writer what_web Program wargame.kr

WEB
Not applicable None Disclosed (Full) No Reward Jul 19, 2021 (5 months ago)

Missing Encryption of Sensitive Data - Cleartext Submission of Passwords

Writer what_web Program wargame.kr

WEB
Informative Medium Disclosed (Full) No Reward Jul 20, 2021 (5 months ago)

게시글 생성 페이지의 CSRF 취약점

Writer what_web Program wargame.kr

WEB
Informative Low Disclosed (Full) No Reward Jul 20, 2021 (5 months ago)

실시간 채팅 기능의 CSRF 취약점

Writer what_web Program wargame.kr

WEB
Informative Low Disclosed (Full) No Reward Jul 20, 2021 (5 months ago)

Free Board 의 게시판 페이지의 댓글 작성 CSRF

Writer what_web Program wargame.kr

WEB
Informative Low Disclosed (Full) No Reward Jul 20, 2021 (5 months ago)

공격자는 다른 사용자가 회원 가입을 하지 못하도록 차단할 수 있습니다.

Writer what_web Program wargame.kr

WEB
Informative Low Disclosed (Full) No Reward Jul 21, 2021 (5 months ago)

모든 세션이 로그아웃후 에도 완전히 파기되지 않습니다

Writer what_web Program wargame.kr

WEB
Informative Low Disclosed (Full) No Reward Jul 23, 2021 (4 months ago)

취약한 암호 정책으로 인해 사용자의 계정을 쉽게 추측하여 손상시킬 수 있습니다.

Writer what_web Program wargame.kr

WEB
Informative None Disclosed (Full) No Reward Jul 24, 2021 (4 months ago)

이메일 길이 확인 부족으로 인한 서비스 거부 발생

Writer what_web Program wargame.kr

WEB
Informative Low Disclosed (Full) No Reward Aug 14, 2021 (4 months ago)

Email Spoofing to Inbox due to Missing or Misconfigured DMARC on Email Domain

Writer what_web Program wargame.kr

WEB
Informative Medium Disclosed (Limited) No Reward Jul 19, 2021 (5 months ago)

PHP error 노출

Writer 4a84ce15 Program wargame.kr

WEB
Informative Low Disclosed (Full) No Reward Jul 20, 2021 (5 months ago)

비밀번호 설정 규칙 부재 및 brute forcing 허용으로 계정 탈취 가능

Writer 4b8f1687 Program webhacking.kr

WEB
Not applicable None Disclosed (Full) No Reward Sep 29, 2021 (2 months ago)

디렉토리 리스팅

Writer 장종민 Program webhacking.kr

WEB
Not applicable None Disclosed (Full) No Reward Sep 19, 2021 (3 months ago)

Relative XSS를 이용한 Cookie & Session Cache or Overwrite

Writer 장종민 Program webhacking.kr

WEB
Informative None Disclosed (Full) No Reward Aug 20, 2021 (4 months ago)