{"type": "openbugbounty", "viewCount": 3, "enchantments": {"score": {"value": 0.0, "vector": "NONE", "modified": "2017-10-17T03:35:38", "rev": 2}, "dependencies": {"references": [], "modified": "2017-10-17T03:35:38", "rev": 2}, "vulnersScore": 0.0}, "reporter": "Spam404", "title": "mail.hdfclife.in XSS vulnerability ", "cvelist": [], "bulletinFamily": "bugbounty", "cvss": {"score": 0.0, "vector": "NONE"}, "references": [], "enchantments_done": [], "modified": "2017-07-28T10:18:00", "description": "##### Vulnerable URL:\n \n \n http://mail.hdfclife.in/?user=%22%3E%3Csvg/onload=prompt%28/OPENBUGBOUNTY/%29%3E\n \n\n##### Details:\n\nDescription| Value \n---|--- \nPatched:| Yes, at 28.07.2017 \nLatest check for patch:| 28.07.2017 10:18 GMT \nVulnerability type:| XSS \nVulnerability status:| Publicly disclosed \nAlexa Rank| Unknown / Not calculated \nVIP website status:| No \nCheck mail.hdfclife.in SSL connection:| (Grade: F) \n \n##### Coordinated Disclosure Timeline:\n\nDescription| Value \n---|--- \nVulnerability submitted via Open Bug Bounty| 15 August, 2016 09:27 GMT \nGeneric security notifications sent to website owner| 15 August, 2016 09:30 GMT \nVulnerability details disclosed by researcher| 7 November, 2016 10:14 GMT \nVulnerability patched by the website owner| 28 July, 2017 10:18 GMT\n", "href": "https://www.openbugbounty.org/reports/175309/", "id": "OBB:175309", "lastseen": "2017-10-17T03:35:38", "openbugbounty": {"patchStatus": "patched", "mirror": ""}, "published": "2016-08-15T09:27:00"}

{}