just-food.com Improper Access Control vulnerability OBB-3828042

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

just-food.com Cross Site Scripting vulnerability OBB-3124393

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

nutrilink-food.com Cross Site Scripting vulnerability OBB-3119642

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

elaf-food.com Cross Site Scripting vulnerability OBB-2993150

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

philea-food.com Cross Site Scripting vulnerability OBB-2753103

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

ecoagri-food.com Cross Site Scripting vulnerability OBB-1229582

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

food.com XSS vulnerability

Vulnerable URL: http://www.food.com/search/'-alert'XSSPOSED'-' Details: Description| Value ---|--- Patched:| Yes, at 26.11.2017 Latest check for patch:| 26.11.2017 14:24 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 1901 VIP website status:| Yes Coordinated...

food.com XSS vulnerability

Vulnerable URL: http://www.food.com/recipe/lemon-angel-cake-with-blueberry-sauce-164755?scaleto=6.0=x%22%3E%3CsvG%20onLoad=prompt%28%22OPENBUGBOUNTY%22%29%3E=us Details: Description| Value ---|--- Patched:| Yes, at 25.11.2017 Latest check for patch:| 25.11.2017 19:30 GMT Vulnerability type:| XSS...

food.com XSS vulnerability

Vulnerable URL: http://www.food.com/signup?dest=alert'XSSPOSED'...

food.com XSS vulnerability

Vulnerable URL: http://www.food.com/recipe/flounder-saute-43036 Details: Description| Value ---|--- Patched:| Yes, at 23.11.2017 Latest check for patch:| 23.11.2017 08:54 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 753 Google Pagerank| 6 VIP website status:|...

food.com XSS vulnerability

Vulnerable URL: http://www.food.com/search/chicken+recipes?include===83,84"...

food.com XSS vulnerability

Vulnerable URL: http://www.food.com/search/chicken+recipes?include=="...

food.com XSS vulnerability

Vulnerable URL: http://www.food.com/recipe/carnitas-michoacan-219109?page=%3Csvg/onload=alert%28/XSSPOSED/%29// Details: Description| Value ---|--- Patched:| Yes, at 21.09.2017 Latest check for patch:| 21.09.2017 07:16 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa...

Unfixed XSS vulnerability at www.food.com

Security researcher Rugburn, has submitted on 12/01/2012 a cross-site-scripting XSS vulnerability affecting www.food.com, which at the time of submission ranked 1590 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 12/01/2012. It is currently...