ksrjsc.com XSS vulnerability

2017-07-04T12:08:00
ID OBB:259117
Type openbugbounty
Reporter et
Modified 2017-08-03T12:08:00

Description

Open Bug Bounty ID: OBB-259117

Description| Value
---|---
Affected Website:| ksrjsc.com
Open Bug Bounty Program:| Create your bounty program now. It's open and free.
Vulnerable Application:| Custom Code
Vulnerability Type:| XSS (Cross Site Scripting) / CWE-79
CVSSv3 Score:| 6.1 [CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N]
Remediation Guide:| OWASP XSS Prevention Cheat Sheet

Vulnerable URL:
http://www.ksrjsc.com/wangyin/index.php?remark1=%E4%B8%AD%E6%98%9F%E7%9D%BF%E5%85%B8WPS%20Office%E5%8A%9E%E5%85%AC%E7%BB%84%E5%90%88&v;_amount=1">