Red Social española"Adoptauntio" Xss/ Insecure crossdomain / Sensitive files Disclosure/ D.O.S
Adopta un tio Anunciada en TV ======================================================================================================================================== ADOPTAUNTIO SOCIAL NETWORK Xss/ Insecure crossdomain / Sensitive files Disclosure / D.O.S / User credentials are sent in clear text ======================================================================================================================================== TIME-LINE VULNERABILITY Multiples Advisories but vendor Not Response 3/09/2013 Full Disclosure I. VULNERABILITY ————————- #Title: ADOPTAUNTIO SOCIAL NETWORK Cross site scripting / Insecure crossdomain.xml file / Sensitive files Disclosure / Top 10 response times Denial Of Service / User credentials are sent in clear text #Vendor:http://www.adoptauntio.es/ #Author:Juan Carlos García (@secnight) #Follow me http://www.highsec.es Twitter:@secnight II. DESCRIPTION ————————- It is a dating si