Lucene search

K
openbugbountyNpuser500OBB:152838
HistoryMay 14, 2016 - 3:46 a.m.

skiinfo.it XSS vulnerability

2016-05-1403:46:00
npuser500
www.openbugbounty.org
7
Open Bug Bounty ID: OBB-152838
Description Value
Affected Website: skiinfo.it
Vulnerable Application: Custom Code
Vulnerability Type: XSS (Cross Site Scripting) / CWE-79
CVSSv3 Score: 6.1 [CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N]
Remediation Guide: OWASP XSS Prevention Cheat Sheet
Vulnerable URL:
http://www.skiinfo.it/OPENBUGBOUNTY%22%3E%3Cimg%20src=x%20onerror=alert%28%22OPENBUGBOUNTY%22%29%3Ewebcams.html
Coordinated Disclosure Timeline
Description Value
Vulnerability Reported: 14 May, 2016 03:46 GMT
Vulnerability Verified: 14 May, 2016 03:49 GMT
Website Operator Notified: 14 May, 2016 03:49 GMT
Vulnerability Published: 14 May, 2016 03:49 GMT[without any technical details]
Vulnerability Fixed: 26 February, 2018 05:39 GMT
Public Disclosure: 26 February, 2018 05:39 GMT