enpay.com XSS vulnerability

On the 03.01.2018 security researcher reported a XSS vulnerability affecting the enpay.com website via the Open Bug Bounty coordinated vulnerability disclosure program. Coordinated Disclosure Timeline: Description| Value ---|--- Vulnerability submitted via Open Bug Bounty| 3 January, 2018 20:57 G...

enpay.com XSS vulnerability

Vulnerable URL: http://www.enpay.com/en/search.php?keyword=%27%22%3E%3Csvg%2Fonload%3Dprompt%28%2FXSSPOSED%2F%29%3E&submit.x;=0&submit.y;=0 Details: Description| Value ---|--- Patched:| Yes, at 25.07.2017 Latest check for patch:| 25.07.2017 13:26 GMT Vulnerability type:| XSS Vulnerability status:...