Services

IoT Security Testing Red Team Assessment Product Security AI/ML Security Audit Web Security Testing

Mobile Security Testing DevSecOps Consulting Code Review Cloud Security Critical Infrastructure

Products

EXPLIoT

EXPLIoT is framework for IoT security testing
and exploitation.

CloudFuzz

CloudFuzz is platform that lets you code for bugs
by running your software with millions of test cases.

Who we are

About Us Payatu Bandits

Resources

Blogs MasterClass Series Case Studies E-Books New Advisory Media Checklist

Tools

securecode.wiki New

Pune Location Europe Location Australia Location

Top Openings

Security consultant IT sales Pre-Sales Executive Software Developer Software Tester

ALL OPENINGS

Get all of it

Be a Bandit

Technical
Advisory

Through sharp, technical and insightful analysis, the Payatu Team is constantly on the lookout for vulnerabilities and threats. This section exhibits a few of our findings.

Vulnerability

Firefox IOS QR Code Reader XSS

Vulnerability Description

This vulnerability allows an attacker to steal victim’s cookies, personal data and other valuable information from different origins just by scanning a QR code

CVE-ID

CVE-2019-17003

Vendor

Firefox

Product

Firefox IOS

Disclosure Timeline

18 July 2019 reported to the vendor
22 October 2019 fixed released by the vendor

Credits

Nikhil Mittal

Technical Advisory