zazo.de Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1148780 Security Researcher error404 Helped patch 532 vulnerabilities Received 8 Coordinated Disclosure badges Received 20 recommendations , a holder of 8 badges for responsible and coordinated disclosure, found a security vulnerability affecting zazo.de website and its...

zazo.de XSS vulnerability

Vulnerable URL: https://www.zazo.de/search?sSearch=%22/%3E%27%3E%22%3EI%3Ci%3EI%3Csvg/onload=alert/openbugbounty/%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 01.11.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 463538 VIP websi...