laposte.fr Open Redirect vulnerability OBB-2876775

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

laposte.fr Cross Site Scripting vulnerability OBB-2825625

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

laposte.fr Cross Site Scripting vulnerability OBB-2522047

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

laposte.fr Cross Site Scripting vulnerability OBB-2065736

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| laposte.fr ---|--- Open Bug Bounty...

laposte.fr Cross Site Scripting vulnerability OBB-1377223

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

laposte.fr Cross Site Scripting vulnerability OBB-1369550

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

laposte.fr Cross Site Scripting vulnerability OBB-1025012

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

laposte.fr XSS vulnerability

Open Bug Bounty ID: OBB-522765 Description| Value ---|--- Affected Website:| laposte.fr Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Disclosure Standard:| Coordinated Disclosure based on...

laposte.fr XSS vulnerability

Vulnerable URL: https://www.laposte.fr/handlers/widget/widgetstracker.php?app=Horloge=FR=%22%3E%3C/script%3E%3Cimg%20src=x%20onerror=prompt/OPENBUGBOUNTY/%3E Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 1607 V...

laposte.fr XSS vulnerability

Vulnerable URL: http://www.laposte.fr/handlers/widget/widgetstracker.php?app=Horloge=FR=%22%3E%3C/script%3E%3Cimg%20src=x%20onerror=prompt/OPENBUGBOUNTY/%3E Details: Description| Value ---|--- Patched:| Yes, at 27.07.2017 Latest check for patch:| 27.07.2017 10:15 GMT Vulnerability type:| XSS...

laposte.fr IFRAME Injection vulnerability

Vulnerable URL: http://www.laposte.fr/outilsuivi/web/suiviInterMetiers.php?method=json=null=%22%3E%3CIFRAME%20SRC=https://www.openbugbounty.org%20%20width=1200%20height=800%3E Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| IFRAME Injection Vulnerability status:| Public...