How do I verify there is no XSS that was reported 3-years ago

Questions or suggestions about the platform
Post Reply
alpdog14
Posts:1
Joined:Tue Mar 07, 2023 3:56 pm
How do I verify there is no XSS that was reported 3-years ago

Post by alpdog14 » Tue Mar 07, 2023 4:12 pm

I am completely new to this Bug Bounty and I need to understand how do I resolve this report bug bounty:

https://www.openbugbounty.org/reports/1203268/

This is no longer a bug at all, as we are completely redirecting all traffic. I have no idea how to actually resolve or report that there is no XSS issue. Please help me.

MrMoney84315336
Posts:10
Joined:Tue Apr 13, 2021 7:16 am

Re: How do I verify there is no XSS that was reported 3-years ago

Post by MrMoney84315336 » Wed May 03, 2023 6:09 am

It doesn't matter to OBB, we also have reports that are now redirected to a 404 page, but OBB still won't mark the reports as patched.
Also other reports that are fixed since 2021 are rejected by OBB as not patched.

Even the researchers have confirmed in the comments of the report that the gaps are closed.
But OBB is getting in the way and simply doesn't want it.

We therefore ask the researchers to send us the reports directly and avoid OBB.
Furthermore, we have set all projects here on OBB as private, so that the reports are no longer visible to the outside.

Even if the report is submitted via manual review, they are reset to unpatched after about 20 minutes.
https://www.openbugbounty.org/reports/r ... ix/OBB-ID/

Post Reply

Who is online

Users browsing this forum: No registered users and 2 guests