zcool.com.cn Cross Site Scripting vulnerability OBB-2007826

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| zcool.com.cn ---|--- Open Bug Bounty...

zcool.com.cn XSS vulnerability

Vulnerable URL: http://www.zcool.com.cn/search/content?word=%22%3Etrolo%3Ci%3Etralala%3Cimg%20src=x%20onerror=prompt/OPENBUGBOUNTY/%3E Details: Description| Value ---|--- Patched:| Yes, at 27.11.2017 Latest check for patch:| 27.11.2017 09:07 GMT Vulnerability type:| XSS Vulnerability status:|...