Report Email Alerts Open Bug Bounty: 96461 coordinated disclosures
Full Disclosure: 32113 vulnerabilities
Total Vulnerabilities Fixed: 32981
107088 vulnerable websites, 12146 VIP websites
2459 security researchers, 3429 notification subscribers

Coordinated Vulnerability Disclosure

On the 29.11.2016 security researcher ral249 Approved XSS vulnerabilities: 90
Approved XSS vulnerabilities on VIP websites: 28
reported a XSS vulnerability affecting the us.hola.com website via the Open Bug Bounty vulnerability disclosure program. We verified the vulnerability and confirmed its existence.

Technical details of the vulnerability are currently hidden ("On Hold") to give website owner time to patch the vulnerability without putting any of its users at risk.

If you are the website owner, administrator or authorized third-party, please contact the researcher directly for vulnerability details and coordinated disclosure.

Important: we never act as intermediary between you and the researcher. It's completely up to you to decide if, and how, to thank the researcher. In some cases a 'thank you' email is enough, in others something more remarkable would be good to recognize his, or her, efforts and time. A recommendation may be a good idea.

us.hola.com Description

¡HOLA! USA: noticias de famosos, moda y belleza - hola.com. Número 1 en actualidad y tendencias de moda, belleza y estilo de vida. Noticias diarias sobre las estrellas de cine, la música, tendencias de moda, consejos de belleza, recetas de cocina, estilo de vida y la actualidad de las

Notification & Disclosure Timeline

29 November, 2016 at 12:09 GMTVulnerability reported via Open Bug Bounty
29 November, 2016 at 12:11 GMTNotification sent to generic security emails
29 November, 2016 at 14:17 GMTNotification sent to subscribers (without technical details)

us.hola.com Ranking:

Alexa RankUnknown / Not calculated
VIP website statusNo
Check us.hola.com for malware:Click here

Comments:

Please login via twitter to be the first one to comment.


Latest Vulnerabilities on *.us.hola.com

Vulnerability Reported by Type Status Reported on
Open Bug Bounty
On Hold
29.11.2016
Full Disclosure
patched
29.04.2015

Latest Vulnerabilities Reported by ral249

Domain Type Status Reported
Full Disclosure
patched
05.07.2015
Full Disclosure
unpatched
05.07.2015
Full Disclosure
unpatched
05.07.2015
Full Disclosure
unpatched
05.07.2015
Full Disclosure
unpatched
05.07.2015
Full Disclosure
unpatched
05.07.2015
Full Disclosure
unpatched
05.07.2015
Full Disclosure
unpatched
05.07.2015
Full Disclosure
unpatched
05.07.2015
Full Disclosure
patched
10.06.2015
Full Disclosure
unpatched
09.06.2015
Full Disclosure
patched
22.04.2015
Full Disclosure
unpatched
22.04.2015
Full Disclosure
unpatched
07.04.2015
Full Disclosure
unpatched
07.04.2015
Full Disclosure
patched
07.04.2015
Full Disclosure
patched
07.04.2015
Full Disclosure
unpatched
07.04.2015
Full Disclosure
unpatched
07.04.2015
Full Disclosure
unpatched
07.04.2015

Latest VIP Submissions

nhm.ac.uk
Reported by SonnySpooks Twitter: @SonnySpooks
Recommendations received: 1
Approved XSS vulnerabilities: 1169
Approved XSS vulnerabilities on VIP websites: 54
on 21.01.2017
adage.com
Reported by chris_t_green Approved XSS vulnerabilities: 12
Approved XSS vulnerabilities on VIP websites: 1
on 21.01.2017
mentalfloss.com
Reported by Oc3f Recommendations received: 3
Approved XSS vulnerabilities: 1200
Approved XSS vulnerabilities on VIP websites: 254
on 20.01.2017
hometalk.com
Reported by Oc3f Recommendations received: 3
Approved XSS vulnerabilities: 1200
Approved XSS vulnerabilities on VIP websites: 254
on 20.01.2017
zoon.ru
Reported by k0t Twitter: @s3r_epixin
Recommendations received: 4
Approved XSS vulnerabilities: 441
Approved XSS vulnerabilities on VIP websites: 203
on 20.01.2017
ring.com
Reported by k0t Twitter: @s3r_epixin
Recommendations received: 4
Approved XSS vulnerabilities: 441
Approved XSS vulnerabilities on VIP websites: 203
on 20.01.2017
kik.com
Reported by tyler Twitter: @mindtyler
Approved XSS vulnerabilities: 93
Approved XSS vulnerabilities on VIP websites: 20
on 20.01.2017
photobucket.com
Reported by tyler Twitter: @mindtyler
Approved XSS vulnerabilities: 93
Approved XSS vulnerabilities on VIP websites: 20
on 20.01.2017
accessify.com
Reported by skyler Approved XSS vulnerabilities: 20
Approved XSS vulnerabilities on VIP websites: 2
on 20.01.2017
ucl.ac.uk
Reported by SonnySpooks Twitter: @SonnySpooks
Recommendations received: 1
Approved XSS vulnerabilities: 1169
Approved XSS vulnerabilities on VIP websites: 54
on 20.01.2017

Latest Submissions

riggertalk.com
Reported by whacky Twitter: @w_hacky
Recommendations received: 1
Approved XSS vulnerabilities: 408
Approved XSS vulnerabilities on VIP websites: 5
on 21.01.2017
portal.mrwebsites.ca
Reported by whacky Twitter: @w_hacky
Recommendations received: 1
Approved XSS vulnerabilities: 408
Approved XSS vulnerabilities on VIP websites: 5
on 21.01.2017
revive.mrwebsites.ca
Reported by whacky Twitter: @w_hacky
Recommendations received: 1
Approved XSS vulnerabilities: 408
Approved XSS vulnerabilities on VIP websites: 5
on 21.01.2017
zoon.az
Reported by k0t Twitter: @s3r_epixin
Recommendations received: 4
Approved XSS vulnerabilities: 441
Approved XSS vulnerabilities on VIP websites: 203
on 21.01.2017
zoon.com.ua
Reported by k0t Twitter: @s3r_epixin
Recommendations received: 4
Approved XSS vulnerabilities: 441
Approved XSS vulnerabilities on VIP websites: 203
on 21.01.2017
zoon.kz
Reported by k0t Twitter: @s3r_epixin
Recommendations received: 4
Approved XSS vulnerabilities: 441
Approved XSS vulnerabilities on VIP websites: 203
on 21.01.2017
zoon.by
Reported by k0t Twitter: @s3r_epixin
Recommendations received: 4
Approved XSS vulnerabilities: 441
Approved XSS vulnerabilities on VIP websites: 203
on 21.01.2017
alle-tests.nl
Reported by rootpentesting Twitter: @rootpentesting
Recommendations received: 6
Approved XSS vulnerabilities: 268
Approved XSS vulnerabilities on VIP websites: 11
on 21.01.2017
extranet.entertainmentone.be
Reported by rootpentesting Twitter: @rootpentesting
Recommendations received: 6
Approved XSS vulnerabilities: 268
Approved XSS vulnerabilities on VIP websites: 11
on 21.01.2017
cgv.id
Reported by MrFatoni Approved XSS vulnerabilities: 16
Approved XSS vulnerabilities on VIP websites: 1
on 21.01.2017