Lucene search
Deb_securityOBB:578675HistoryMar 12, 2018 - 2:44 a.m.
hidabroot.org XSS vulnerability
2018-03-1202:44:00
deb_security
www.openbugbounty.org
10
Open Bug Bounty ID: OBB-578675
| Description | Value |
|---|---|
| Affected Website: | hidabroot.org |
| Open Bug Bounty Program: | Not created yet |
| Vulnerable Application: | Custom Code |
| Vulnerability Type: | XSS (Cross Site Scripting) / CWE-79 |
| CVSSv3 Score: | 6.1 [CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N] |
| Disclosure Standard: | Coordinated Disclosure based on ISO 29147 guidelines |
| Remediation Guide: | OWASP XSS Prevention Cheat Sheet |
Vulnerable URL:
https://www.hidabroot.org/search?q=%27%22--!%3E%3CBody%20/Onpageshow=confirm`1`%3E&type;=videos
Coordinated Disclosure Timeline
| Description | Value |
|---|---|
| Vulnerability Reported: | 12 March, 2018 02:44 GMT |
| Vulnerability Verified: | 12 March, 2018 02:59 GMT |
| Website Operator Notified: | 12 March, 2018 02:59 GMT |
| Vulnerability Published: | 12 March, 2018 02:59 GMT[without any technical details] |
| Vulnerability Fixed: | 6 April, 2018 19:32 GMT |
| Public Disclosure: | 11 April, 2018 02:44 GMT |