ID OBB:137426
Type openbugbounty
Reporter WhitePacket
Modified 2018-03-15T02:02:00
Description
Open Bug Bounty ID: OBB-137426
Description| Value
---|---
Affected Website:| vrptv.com
Vulnerable Application:| Custom Code
Vulnerability Type:| Open Redirect / CWE-601
CVSSv3 Score:| 3.4 [CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:N]
Remediation Guide:| OWASP Open Redirect Cheat Sheet
Vulnerable URL:
http://vrptv.com/my/adx/www/delivery/ck.php?oaparams=2__bannerid=288__zoneid=12__cb=25f7a79156__oadest=https://xssposed.org/
Coordinated Disclosure Timeline
Description| Value
---|---
Vulnerability Reported:| 24 February, 2016 02:07 GMT
Vulnerability Verified:| 24 February, 2016 02:09 GMT
Website Operator Notified:| 24 February, 2016 02:09 GMT
Vulnerability Published:| 24 February, 2016 02:09 GMT[without any technical details]
Vulnerability Fixed:| 15 March, 2018 02:02 GMT
Public Disclosure:| 15 March, 2018 02:02 GMT
{"id": "OBB:137426", "type": "openbugbounty", "bulletinFamily": "bugbounty", "title": "vrptv.com Open Redirect vulnerability ", "description": "##### Open Bug Bounty ID: OBB-137426\n\nDescription| Value \n---|--- \nAffected Website:| vrptv.com \nVulnerable Application:| Custom Code \nVulnerability Type:| Open Redirect / CWE-601 \nCVSSv3 Score:| 3.4 [CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:N] \nRemediation Guide:| OWASP Open Redirect Cheat Sheet \n \n##### Vulnerable URL:\n \n \n http://vrptv.com/my/adx/www/delivery/ck.php?oaparams=2__bannerid=288__zoneid=12__cb=25f7a79156__oadest=https://xssposed.org/\n \n\n##### Coordinated Disclosure Timeline\n\nDescription| Value \n---|--- \nVulnerability Reported:| 24 February, 2016 02:07 GMT \nVulnerability Verified:| 24 February, 2016 02:09 GMT \nWebsite Operator Notified:| 24 February, 2016 02:09 GMT \nVulnerability Published:| 24 February, 2016 02:09 GMT[without any technical details] \nVulnerability Fixed:| 15 March, 2018 02:02 GMT \nPublic Disclosure:| 15 March, 2018 02:02 GMT\n", "published": "2016-02-24T02:07:00", "modified": "2018-03-15T02:02:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "https://www.openbugbounty.org/reports/137426/", "reporter": "WhitePacket", "references": [], "cvelist": [], "lastseen": "2018-03-15T22:00:27", "history": [{"bulletin": {"id": "OBB:137426", "type": "openbugbounty", "bulletinFamily": "bugbounty", "title": "vrptv.com Open Redirect vulnerability ", "description": "##### Vulnerable URL:\n \n \n http://vrptv.com/my/adx/www/delivery/ck.php?oaparams=2__bannerid=288__zoneid=12__cb=25f7a79156__oadest=https://xssposed.org/\n \n\n##### Details:\n\nDescription| Value \n---|--- \nPatched:| No \nLatest check for patch:| 26.07.2017 \nVulnerability type:| Open Redirect \nVulnerability status:| Publicly disclosed \nAlexa Rank| Unknown / Not calculated \nGoogle Pagerank| 3 \nVIP website status:| No \nCheck vrptv.com SSL connection:| (Grade: F) \n \n##### Coordinated Disclosure Timeline:\n\nDescription| Value \n---|--- \nVulnerability submitted via Open Bug Bounty| 24 February, 2016 02:07 GMT \nNotification sent to subscribers (without technical details)| 24 February, 2016 06:17 GMT \nVulnerability details disclosed by researcher| 2 March, 2016 02:11 GMT\n", "published": "2016-02-24T02:07:00", "modified": "2016-03-02T02:11:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "https://www.openbugbounty.org/reports/137426/", "reporter": "WhitePacket", "references": [], "cvelist": [], "lastseen": "2017-10-17T06:23:15", "history": [], "viewCount": 0, "enchantments": {"score": {"value": 5.8, "modified": "2017-10-17T06:23:15"}}, "objectVersion": "1.4", "openbugbounty": {"patchStatus": "unpatched", "mirror": ""}}, "lastseen": "2017-10-17T06:23:15", "differentElements": ["description", "modified", "openbugbounty"], "edition": 1}], "viewCount": 0, "enchantments": {"vulnersScore": 6.8}, "objectVersion": "1.4", "openbugbounty": {"patchStatus": "patched", "mirror": "http://137426.openbounty.org/mirror/"}, "_object_type": "robots.models.openbugbounty.OpenbugbountyBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.openbugbounty.OpenbugbountyBulletin"]}
{"result": {}}