traveltriangle.com Cross Site Request Forgery vulnerability

Open Bug Bounty ID: OBB-972309 Security Researcher PallaviPipalwa Helped patch 11 vulnerabilities Received 1 Coordinated Disclosure badges , a holder of 1 badges for responsible and coordinated disclosure, found a security vulnerability affecting traveltriangle.com website and its users. Followin...

traveltriangle.com XSS vulnerability

Vulnerable URL: http://traveltriangle.com/tour-packages?todestination==alert/OPENBUGBOUNTY/...