{"openbugbounty": {"patchStatus": "on hold", "mirror": ""}, "description": "On the 19.11.2017 security researcher reported a XSS vulnerability affecting the support.expressvpn.com website via the Open Bug Bounty coordinated vulnerability disclosure program.\n\n##### Coordinated Disclosure Timeline:\n\nDescription| Value \n---|--- \nVulnerability submitted via Open Bug Bounty| 19 November, 2017 17:18 GMT \nGeneric security notifications sent to website owner| 19 November, 2017 17:25 GMT \nNotification sent to subscribers (without technical details)| 19 November, 2017 18:17 GMT \n \nIf you are the website owner or administrator please [contact the researcher](<https://www.openbugbounty.org/researchers/login_denied/>) directly to get vulnerability details and proceed to coordinated disclosure.\n", "reporter": "login_denied", "href": "https://www.openbugbounty.org/reports/423900/", "type": "openbugbounty", "viewCount": 8, "references": [], "lastseen": "2017-11-19T20:54:32", "published": "2017-11-19T17:18:00", "cvelist": [], "id": "OBB:423900", "enchantments_done": [], "modified": "2017-11-19T18:17:00", "title": "support.expressvpn.com XSS vulnerability", "cvss": {"score": 0.0, "vector": "NONE"}, "bulletinFamily": "bugbounty", "enchantments": {"score": {"value": 1.5, "vector": "NONE"}, "dependencies": {}, "backreferences": {}, "exploitation": null, "vulnersScore": 1.5}, "immutableFields": [], "cvss2": {}, "cvss3": {}, "_state": {"dependencies": 1645570782}}

{}