Lucene search
Deb_securityOBB:455178HistoryDec 18, 2017 - 10:19 p.m.
hengelsport-shops.nl XSS vulnerability
2017-12-1822:19:00
deb_security
www.openbugbounty.org
10
Open Bug Bounty ID: OBB-455178
| Description | Value |
|---|---|
| Affected Website: | hengelsport-shops.nl |
| Vulnerable Application: | Custom Code |
| Vulnerability Type: | XSS (Cross Site Scripting) / CWE-79 |
| CVSSv3 Score: | 6.1 [CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N] |
| Remediation Guide: | OWASP XSS Prevention Cheat Sheet |
Vulnerable URL:
http://www.hengelsport-shops.nl/8-vishengels.html?p=2&sorteer;=%22%3E%3Csvg%3E%3Cscript%3E/%3C@/%3Eprompt(/OPENBUGBOUNTY/)%3C/script%3E
Coordinated Disclosure Timeline
| Description | Value |
|---|---|
| Vulnerability Reported: | 18 December, 2017 22:19 GMT |
| Vulnerability Verified: | 18 December, 2017 22:22 GMT |
| Website Operator Notified: | 18 December, 2017 22:22 GMT |
| Vulnerability Published: | 18 December, 2017 22:22 GMT[without any technical details] |
| Public Disclosure: | 18 March, 2018 22:19 GMT |