logo
DATABASE RESOURCES PRICING ABOUT US

columbiasportswear.nl Cross Site Scripting vulnerability

Description

Open Bug Bounty ID: OBB-1152419 Following coordinated and responsible vulnerability disclosure guidelines of the **[ISO 29147](<https://www.iso.org/standard/45170.html>)** standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence. Affected Website:| **[columbiasportswear.nl](<https://www.columbiasportswear.nl>) ** ---|--- Open Bug Bounty Program:| **Create your bounty program now**. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| **[XSS (Cross Site Scripting)](<https://www.owasp.org/index.php/Cross-site_Scripting_\(XSS\)>)** / CWE-79 CVSSv3 Score:| 6.1 [CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N] Disclosure Standard:| Coordinated Disclosure based on **[ISO 29147](<https://www.iso.org/standard/45170.html>)** guidelines Discovered and Reported by:| **H_chabik ** Remediation Guide:| **[OWASP XSS Prevention Cheat Sheet](<https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Cross_Site_Scripting_Prevention_Cheat_Sheet.md>)** Export Vulnerability Data:| Bugzilla Vulnerability Data JIRA Vulnerability Data [ Configuration ] Mantis Vulnerability Data Splunk Vulnerability Data XML Vulnerability Data [ XSD ] Vulnerable URL: ![](data:image/png;base64, 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) --- **Mirror:** [Click here to view the mirror](<http://1152419.openbounty.org/mirror/>) ### Coordinated Disclosure Timeline Vulnerability Reported:| 29 April, 2020 01:15 GMT ---|--- Vulnerability Verified:| 29 April, 2020 08:25 GMT Website Operator Notified:| 29 April, 2020 08:25 GMT a. Using the ISO 29147 guidelines| ![](/images/done.png) ---|--- b. Using publicly available security contacts| ![](/images/done.png) c. Using Open Bug Bounty notification framework| ![](/images/done.png) d. Using security contacts provided by the researcher| ![](/images/done.png) Public Report Published [without any technical details]:| 29 April, 2020 08:25 GMT