globes.co.il Cross Site Scripting vulnerability OBB-3249241

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

globes.co.il XSS vulnerability

Open Bug Bounty ID: OBB-388385 Description| Value ---|--- Affected Website:| globes.co.il Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat Shee...

globes.co.il XSS vulnerability

Vulnerable URL: http://www.globes.co.il/en/search.aspx?searchType=all=%22--%20/scriptsvg/onload%3D%27%3Balert%28/XSSPOSED/%29%3B%27=1=partner-pub-3457903570625953:1632854301=FORID:10=UTF-8=%22--%20/scriptsvg/onload=%27;alert%28/XSSPOSED/%29;%27=Search Details: Description| Value ---|--- Patched:|...

Unfixed XSS vulnerability at www.globes.co.il

Security researcher meloulisi, has submitted on 19/01/2008 a cross-site-scripting XSS vulnerability affecting www.globes.co.il, which at the time of submission ranked 6469 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 03/03/2008. It is...