umpchannel.ump.edu.my XSS vulnerability

Open Bug Bounty ID: OBB-465376 Description| Value ---|--- Affected Website:| umpchannel.ump.edu.my Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention...

umpchannel.ump.edu.my XSS vulnerability

Vulnerable URL: http://umpchannel.ump.edu.my/photos.php?cat=%22/%3E%3Cscript%3Ealert/OPENBUGBOUNTY/;%3C/script%3E=viewall=alltime=1catname=All Details: Description| Value ---|--- Patched:| No Latest check for patch:| 07.01.2018 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed...