logo
DATABASE RESOURCES PRICING ABOUT US

bournemouthecho.co.uk XSS vulnerability

Description

##### Open Bug Bounty ID: OBB-178164 Description| Value ---|--- Affected Website:| bournemouthecho.co.uk Vulnerable Application:| Custom Code Vulnerability Type:| XSS (Cross Site Scripting) / CWE-79 CVSSv3 Score:| 6.1 [CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N] Remediation Guide:| OWASP XSS Prevention Cheat Sheet ##### Vulnerable URL: http://www.bournemouthecho.co.uk/search/?search=\%27*prompt(%22OPENBUGBOUNTY%22),%2f%2f ##### Coordinated Disclosure Timeline Description| Value ---|--- Vulnerability Reported:| 26 August, 2016 23:43 GMT Vulnerability Verified:| 26 August, 2016 23:45 GMT Website Operator Notified:| 26 August, 2016 23:45 GMT Vulnerability Published:| 26 August, 2016 23:45 GMT[without any technical details] Vulnerability Fixed:| 15 March, 2018 03:00 GMT Public Disclosure:| 15 March, 2018 03:00 GMT