{"type": "openbugbounty", "viewCount": 2, "enchantments": {"score": {"value": -0.0, "vector": "NONE"}, "dependencies": {}, "backreferences": {}, "exploitation": null, "vulnersScore": -0.0}, "reporter": "Oc3f", "title": "vi.norgren.com XSS vulnerability ", "cvelist": [], "bulletinFamily": "bugbounty", "cvss": {"score": 0.0, "vector": "NONE"}, "references": [], "enchantments_done": [], "modified": "2016-08-28T07:12:00", "description": "##### Vulnerable URL:\n \n \n http://vi.norgren.com/webconfigurator.asp?languageCode=%22%3E%3Cimg%20src=x%20onerror=prompt%28/OPENBUGBOUNTY/%29%3E&market;=UK\n \n\n##### Details:\n\nDescription| Value \n---|--- \nPatched:| No \nLatest check for patch:| 27.07.2017 \nVulnerability type:| XSS \nVulnerability status:| Publicly disclosed \nAlexa Rank| Unknown / Not calculated \nVIP website status:| No \nCheck vi.norgren.com SSL connection:| (Grade: F) \n \n##### Coordinated Disclosure Timeline:\n\nDescription| Value \n---|--- \nVulnerability submitted via Open Bug Bounty| 5 June, 2016 06:52 GMT \nGeneric security notifications sent to website owner| 5 June, 2016 06:55 GMT \nCustomized security notification sent to website owner| 5 June, 2016 06:55 GMT \nNotification sent to subscribers (without technical details)| 5 June, 2016 10:17 GMT \nVulnerability details disclosed by researcher| 28 August, 2016 07:12 GMT\n", "href": "https://www.openbugbounty.org/reports/157902/", "id": "OBB:157902", "lastseen": "2017-10-17T04:48:45", "openbugbounty": {"patchStatus": "unpatched", "mirror": ""}, "published": "2016-06-05T06:52:00", "immutableFields": [], "cvss2": {}, "cvss3": {}, "_state": {"dependencies": 1645556010}}

{}