{"type": "openbugbounty", "viewCount": 1, "enchantments": {"score": {"value": 0.1, "vector": "NONE", "modified": "2017-10-16T23:38:59", "rev": 2}, "dependencies": {"references": [], "modified": "2017-10-16T23:38:59", "rev": 2}, "vulnersScore": 0.1}, "reporter": "M0r3h4x", "title": "sclhealth.org XSS vulnerability ", "cvelist": [], "bulletinFamily": "bugbounty", "cvss": {"score": 0.0, "vector": "NONE"}, "references": [], "enchantments_done": [], "modified": "2017-08-05T16:37:00", "description": "##### Vulnerable URL:\n \n \n https://www.sclhealth.org/find-a-doctor/search-results/?SpecialtyGroup=&fullname;=xss%22%20onfocus=%22prompt(/OPENBUGBOUNTY/)%22%20autofocus=%22&zip;=80205⦥=&languages;=&AffiliatedLocations;=saint+joseph+hospital&SCLEmployed;=on\n \n\n##### Details:\n\nDescription| Value \n---|--- \nPatched:| Yes, at \nVulnerability type:| XSS \nVulnerability status:| Publicly disclosed \nAlexa Rank| 335095 \nVIP website status:| No \nCheck sclhealth.org SSL connection:| (Grade: A+) \n \n##### Coordinated Disclosure Timeline:\n\nDescription| Value \n---|--- \nVulnerability submitted via Open Bug Bounty| 13 May, 2017 00:17 GMT \nGeneric security notifications sent to website owner| 13 May, 2017 00:20 GMT \nNotification sent to subscribers (without technical details)| 13 May, 2017 02:17 GMT \nVulnerability details disclosed by researcher| 5 August, 2017 01:15 GMT \nVulnerability patched by the website owner| 5 August, 2017 16:37 GMT\n", "href": "https://www.openbugbounty.org/reports/236185/", "id": "OBB:236185", "lastseen": "2017-10-16T23:38:59", "openbugbounty": {"patchStatus": "patched", "mirror": ""}, "published": "2017-05-13T00:17:00"}

{}