fluggesellschaft.de Cross Site Scripting vulnerability OBB-3829801

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

fluggesellschaft.de XSS vulnerability

Vulnerable URL: http://www.fluggesellschaft.de/search/flights/?af=%3C%2Fscript%3E%3E%3Cscript%3Eprompt%28%22OPENBUGBOUNTY%22%29%3C%2Fscript%3E Details: Description| Value ---|--- Patched:| Yes, at 28.11.2017 Latest check for patch:| 28.11.2017 14:18 GMT Vulnerability type:| XSS Vulnerability...