ID H1:106678
Type hackerone
Reporter robd4k
Modified 2016-12-09T10:10:18
Description
XSS vulnerability lies on http://now.informatica.com/launch-next-bigdata-registration-inxpo.html?Source=homepage
POC
{"id": "H1:106678", "hash": "6982330de55648cf61098c15316d1fc6", "type": "hackerone", "bulletinFamily": "bugbounty", "title": "Informatica: [now.informatica.com] Reflective XSS", "description": "XSS vulnerability lies on `http://now.informatica.com/launch-next-bigdata-registration-inxpo.html?Source=homepage`\n\n#POC\n\n* Sign up for big data management Virtual launch event\n\n* on parameter `company_name` inject `'\"><img src=x onerror=alert(1)>`", "published": "2015-12-23T21:36:50", "modified": "2016-12-09T10:10:18", "cvss": {"vector": "NONE", "score": 0.0}, "href": "https://hackerone.com/reports/106678", "reporter": "robd4k", "references": [], "cvelist": [], "lastseen": "2018-04-19T17:34:09", "history": [{"edition": 4, "lastseen": "2017-09-18T09:23:30", "bulletin": {"id": "H1:106678", "hash": "19862ce7a308c6b65db5caae31ef34acc4292becde5cdf59e391884d1e3728d5", "type": "hackerone", "bulletinFamily": "bugbounty", "title": "Informatica: [now.informatica.com] Reflective XSS", "description": "XSS vulnerability lies on `http://now.informatica.com/launch-next-bigdata-registration-inxpo.html?Source=homepage`\n\n#POC\n\n* Sign up for big data management Virtual launch event\n\n* on parameter `company_name` inject `'\"><img src=x onerror=alert(1)>`", "published": "2015-12-23T21:36:50", "modified": "2016-12-09T10:10:18", "cvss": {"vector": "NONE", "score": 0.0}, "href": "https://hackerone.com/reports/106678", "reporter": "robd4k", "references": [], "cvelist": [], "lastseen": "2017-09-18T09:23:30", "history": [], "viewCount": 1, "enchantments": {}, "objectVersion": "1.4", "bounty": 0.0, "bountyState": "resolved", "h1team": {"handle": "informatica", "url": "https://hackerone.com/informatica", "profile_picture_urls": {"small": "https://profile-photos.hackerone-user-content.com/production/000/000/453/ae79628e2753525acce99182b7d0a7b91f3cf0da_small.jpg?1493894101", "medium": "https://profile-photos.hackerone-user-content.com/production/000/000/453/a8f0e5d0c649beeca777fb020fc0a036daa45f27_medium.jpg?1493894101"}}, "h1reporter": {"username": "robd4k", "hacker_mediation": false, "is_me?": false, "disabled": false, "profile_picture_urls": {"small": "https://profile-photos.hackerone-user-content.com/production/000/007/450/fdb148230d31b88341d00ec0e21a26639194366c_small.jpg?1505708477"}, "url": "/robd4k"}}, "differentElements": ["h1reporter"]}, {"edition": 1, "lastseen": "2017-08-22T11:09:38", "bulletin": {"id": "H1:106678", "hash": "adcf2beee393db71cd8ade8ce903786cda7574a325ce9860db776ec492b37ed7", "type": "hackerone", "bulletinFamily": "bugbounty", "title": "Informatica: [now.informatica.com] Reflective XSS", "description": "XSS vulnerability lies on `http://now.informatica.com/launch-next-bigdata-registration-inxpo.html?Source=homepage`\n\n#POC\n\n* Sign up for big data management Virtual launch event\n\n* on parameter `company_name` inject `'\"><img src=x onerror=alert(1)>`", "published": "2015-12-23T21:36:50", "modified": "1970-01-01T00:00:00", "cvss": {"vector": "NONE", "score": 0.0}, "href": "https://hackerone.com/reports/106678", "reporter": "robd4k", "references": [], "cvelist": [], "lastseen": "2017-08-22T11:09:38", "history": [], "viewCount": 1, "enchantments": {}, "objectVersion": "1.4", "bounty": 0.0, "bountyState": "resolved", "h1team": {"handle": "informatica", "url": "https://hackerone.com/informatica", "profile_picture_urls": {"small": "https://profile-photos.hackerone-user-content.com/production/000/000/453/ae79628e2753525acce99182b7d0a7b91f3cf0da_small.jpg?1493894101", "medium": "https://profile-photos.hackerone-user-content.com/production/000/000/453/a8f0e5d0c649beeca777fb020fc0a036daa45f27_medium.jpg?1493894101"}}, "h1reporter": {"disabled": false, "username": "robd4k", "profile_picture_urls": {"small": "https://profile-photos.hackerone-user-content.com/production/000/007/450/b9dbc4cba7c7fd7dbe7f4fa98f0e4181f8ed1004_small.jpeg?1476800618"}, "url": "/robd4k", "hacker_mediation": false}}, "differentElements": ["h1reporter"]}, {"edition": 6, "lastseen": "2018-02-07T16:58:00", "bulletin": {"id": "H1:106678", "hash": "81c47e18317f4ac8a60e5ccea2a53f8c2882ce7869b8902f978794ab80927f5f", "type": "hackerone", "bulletinFamily": "bugbounty", "title": "Informatica: [now.informatica.com] Reflective XSS", "description": "XSS vulnerability lies on `http://now.informatica.com/launch-next-bigdata-registration-inxpo.html?Source=homepage`\n\n#POC\n\n* Sign up for big data management Virtual launch event\n\n* on parameter `company_name` inject `'\"><img src=x onerror=alert(1)>`", "published": "2015-12-23T21:36:50", "modified": "2016-12-09T10:10:18", "cvss": {"vector": "NONE", "score": 0.0}, "href": "https://hackerone.com/reports/106678", "reporter": "robd4k", "references": [], "cvelist": [], "lastseen": "2018-02-07T16:58:00", "history": [], "viewCount": 1, "enchantments": {"score": {"modified": "2018-02-07T16:58:00", "value": 4.3, "vector": "AV:N/AC:M/Au:M/C:N/I:P/A:P/"}}, "objectVersion": "1.4", "bounty": 0.0, "bountyState": "resolved", "h1team": {"handle": "informatica", "url": "https://hackerone.com/informatica", "profile_picture_urls": {"small": "https://profile-photos.hackerone-user-content.com/production/000/000/453/ae79628e2753525acce99182b7d0a7b91f3cf0da_small.jpg?1493894101", "medium": "https://profile-photos.hackerone-user-content.com/production/000/000/453/a8f0e5d0c649beeca777fb020fc0a036daa45f27_medium.jpg?1493894101"}}, "h1reporter": {"hackerone_triager": false, "username": "robd4k", "hacker_mediation": false, "is_me?": false, "disabled": false, "profile_picture_urls": {"small": "https://profile-photos.hackerone-user-content.com/production/000/007/450/e320d053e371ff05fd398573be97badf65862617_small.jpg?1511771374"}, "url": "/robd4k"}}, "differentElements": ["h1team", "h1reporter"]}, {"edition": 5, "lastseen": "2017-10-04T04:13:45", "bulletin": {"id": "H1:106678", "hash": "0df7fc09623e60ed99a3e6c02da749e57470ac04c7b799f01d0741a735ebbe66", "type": "hackerone", "bulletinFamily": "bugbounty", "title": "Informatica: [now.informatica.com] Reflective XSS", "description": "XSS vulnerability lies on `http://now.informatica.com/launch-next-bigdata-registration-inxpo.html?Source=homepage`\n\n#POC\n\n* Sign up for big data management Virtual launch event\n\n* on parameter `company_name` inject `'\"><img src=x onerror=alert(1)>`", "published": "2015-12-23T21:36:50", "modified": "2016-12-09T10:10:18", "cvss": {"vector": "NONE", "score": 0.0}, "href": "https://hackerone.com/reports/106678", "reporter": "robd4k", "references": [], "cvelist": [], "lastseen": "2017-10-04T04:13:45", "history": [], "viewCount": 1, "enchantments": {"score": {"modified": "2017-10-04T04:13:45", "value": 4.3}}, "objectVersion": "1.4", "bounty": 0.0, "bountyState": "resolved", "h1team": {"handle": "informatica", "url": "https://hackerone.com/informatica", "profile_picture_urls": {"small": "https://profile-photos.hackerone-user-content.com/production/000/000/453/ae79628e2753525acce99182b7d0a7b91f3cf0da_small.jpg?1493894101", "medium": "https://profile-photos.hackerone-user-content.com/production/000/000/453/a8f0e5d0c649beeca777fb020fc0a036daa45f27_medium.jpg?1493894101"}}, "h1reporter": {"username": "robd4k", "hacker_mediation": false, "is_me?": false, "disabled": false, "profile_picture_urls": {"small": "https://profile-photos.hackerone-user-content.com/production/000/007/450/bb027e88bee00873549eca590a7b1562f699f64f_small.jpg?1507076216"}, "url": "/robd4k"}}, "differentElements": ["h1reporter"]}, {"edition": 3, "lastseen": "2017-08-29T13:11:22", "bulletin": {"id": "H1:106678", "hash": "d51f2fdcf04de373fb6ee32adf398cb8c77c8fc61cb5a233521864c19368f2ef", "type": "hackerone", "bulletinFamily": "bugbounty", "title": "Informatica: [now.informatica.com] Reflective XSS", "description": "XSS vulnerability lies on `http://now.informatica.com/launch-next-bigdata-registration-inxpo.html?Source=homepage`\n\n#POC\n\n* Sign up for big data management Virtual launch event\n\n* on parameter `company_name` inject `'\"><img src=x onerror=alert(1)>`", "published": "2015-12-23T21:36:50", "modified": "2016-12-09T10:10:18", "cvss": {"vector": "NONE", "score": 0.0}, "href": "https://hackerone.com/reports/106678", "reporter": "robd4k", "references": [], "cvelist": [], "lastseen": "2017-08-29T13:11:22", "history": [], "viewCount": 1, "enchantments": {}, "objectVersion": "1.4", "bounty": 0.0, "bountyState": "resolved", "h1team": {"handle": "informatica", "url": "https://hackerone.com/informatica", "profile_picture_urls": {"small": "https://profile-photos.hackerone-user-content.com/production/000/000/453/ae79628e2753525acce99182b7d0a7b91f3cf0da_small.jpg?1493894101", "medium": "https://profile-photos.hackerone-user-content.com/production/000/000/453/a8f0e5d0c649beeca777fb020fc0a036daa45f27_medium.jpg?1493894101"}}, "h1reporter": {"username": "robd4k", "hacker_mediation": false, "is_me?": false, "disabled": false, "profile_picture_urls": {"small": "https://profile-photos.hackerone-user-content.com/production/000/007/450/b9dbc4cba7c7fd7dbe7f4fa98f0e4181f8ed1004_small.jpeg?1476800618"}, "url": "/robd4k"}}, "differentElements": ["h1reporter"]}, {"edition": 2, "lastseen": "2017-08-28T23:19:24", "bulletin": {"id": "H1:106678", "hash": "cfe3953a09d84922d2792c0db27de6b9a6329bb041a102d884895a381fb17854", "type": "hackerone", "bulletinFamily": "bugbounty", "title": "Informatica: [now.informatica.com] Reflective XSS", "description": "XSS vulnerability lies on `http://now.informatica.com/launch-next-bigdata-registration-inxpo.html?Source=homepage`\n\n#POC\n\n* Sign up for big data management Virtual launch event\n\n* on parameter `company_name` inject `'\"><img src=x onerror=alert(1)>`", "published": "2015-12-23T21:36:50", "modified": "1970-01-01T00:00:00", "cvss": {"vector": "NONE", "score": 0.0}, "href": "https://hackerone.com/reports/106678", "reporter": "robd4k", "references": [], "cvelist": [], "lastseen": "2017-08-28T23:19:24", "history": [], "viewCount": 1, "enchantments": {}, "objectVersion": "1.4", "bounty": 0.0, "bountyState": "resolved", "h1team": {"handle": "informatica", "url": "https://hackerone.com/informatica", "profile_picture_urls": {"small": "https://profile-photos.hackerone-user-content.com/production/000/000/453/ae79628e2753525acce99182b7d0a7b91f3cf0da_small.jpg?1493894101", "medium": "https://profile-photos.hackerone-user-content.com/production/000/000/453/a8f0e5d0c649beeca777fb020fc0a036daa45f27_medium.jpg?1493894101"}}, "h1reporter": {"username": "robd4k", "hacker_mediation": false, "is_me?": false, "disabled": false, "profile_picture_urls": {"small": "https://profile-photos.hackerone-user-content.com/production/000/007/450/b9dbc4cba7c7fd7dbe7f4fa98f0e4181f8ed1004_small.jpeg?1476800618"}, "url": "/robd4k"}}, "differentElements": ["modified"]}], "viewCount": 1, "enchantments": {"score": {"value": 1.0, "vector": "NONE", "modified": "2018-04-19T17:34:09"}, "dependencies": {"references": [], "modified": "2018-04-19T17:34:09"}, "vulnersScore": 1.0}, "objectVersion": "1.4", "bounty": 0.0, "bountyState": "resolved", "h1team": {"handle": "informatica", "url": "https://hackerone.com/informatica", "profile_picture_urls": {"small": "https://profile-photos.hackerone-user-content.com/000/000/453/ae79628e2753525acce99182b7d0a7b91f3cf0da_small.jpg?1493894101", "medium": "https://profile-photos.hackerone-user-content.com/000/000/453/a8f0e5d0c649beeca777fb020fc0a036daa45f27_medium.jpg?1493894101"}}, "h1reporter": {"hackerone_triager": false, "username": "robd4k", "hacker_mediation": false, "is_me?": false, "disabled": false, "profile_picture_urls": {"small": "https://profile-photos.hackerone-user-content.com/000/007/450/e320d053e371ff05fd398573be97badf65862617_small.jpg?1511771374"}, "url": "/robd4k"}, "_object_type": "robots.models.hackerone.HackerOneBulletin", "_object_types": ["robots.models.hackerone.HackerOneBulletin", "robots.models.base.Bulletin"]}
{}