Open Bug Bounty Community Forum

--

You don't provided us login details
Please don't crate new threads, we have special thread for manual check requests

id 825148 is reproducible. Can you please once
http://www.erot.pl/i,kontakt.html?subje ... m(1)%3C!--

id 824962 is still reproducible. can you please check once page fully loads
Please check below link to reproduce...
https://www.mcsoares.pt/info/listar.php ... rm)(1)%3E

still reproducible please check
823210
823201
823200
823197
821966

After executing need to mouse over to reproduce issue 821939
http://zahnarzt-dr-sigl.de/index.php?ur ... OUNTY/)%22

Report ID:821171
Report id 821144
Steps to reproduce XSS:
Go to vtwonen.nl website
In the search box insert the payload <script>alert (6)</script>
Pop up appears

Vulnerability is in search box.
Can't reproduce vulnerability reason is given but I'm able to insert the payload and get the pop up.
Please have a look at it.
Thanks in advance.

Report: 830083 was deemed not reproducible. I made clear indications on what to do in my comment!
They leak confidential information about their webserver by disposing environment variables (this is usually classified as Improper Access Control).

Another one of my reports (831997) was classified as not reproducible, please see below for a poc screenshot.