cme.it Cross Site Scripting vulnerability OBB-3382337

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

cme.it XSS vulnerability

Vulnerable URL: http://www.cme.it/meli1/help1.php?idm=%3Cscript%3EalertString.fromCharCode88,%2083,%2083,%2080,%2079,%2083,%2069,%2068%3C/script%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.12.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclos...