rainbowtrek.com.np Cross Site Scripting vulnerability OBB-3936487

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

rainbowtrek.com.np XSS vulnerability

Vulnerable URL: http://www.rainbowtrek.com.np/find.php?id=15%22%3E%3Cimg%20src=x%20onerror=%22prompt/OPENBUGBOUNTY/%22%3E=region Details: Description| Value ---|--- Patched:| No Latest check for patch:| 06.12.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank|...