collections.museumca.org XSS vulnerability

2017-10-28T03:36:00
ID OBB:374005
Type openbugbounty
Reporter Y4r4G_
Modified 2017-10-30T10:17:00

Description

On the 28.10.2017 security researcher reported a XSS vulnerability affecting the collections.museumca.org website via the Open Bug Bounty coordinated vulnerability disclosure program.

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability submitted via Open Bug Bounty| 28 October, 2017 03:36 GMT
Vulnerability existence verified and confirmed| 30 October, 2017 06:44 GMT
Generic security notifications sent to website owner| 30 October, 2017 06:44 GMT
Customized security notification sent to website owner| 30 October, 2017 06:44 GMT
Notification sent to subscribers (without technical details)| 30 October, 2017 10:17 GMT

If you are the website owner or administrator please contact the researcher directly to get vulnerability details and proceed to coordinated disclosure.