Report Email Alerts Open Bug Bounty: 107349 coordinated disclosures
Full Disclosure: 32317 vulnerabilities
Total Vulnerabilities Fixed: 36316
116296 vulnerable websites, 12675 VIP websites
2789 security researchers, 3871 notification subscribers

Coordinated Vulnerability Disclosure

On the 10.01.2017 security researcher k0t Approved XSS vulnerabilities: 527
Approved XSS vulnerabilities on VIP websites: 236
reported a XSS vulnerability affecting the colourlovers.com website via the Open Bug Bounty vulnerability disclosure program. We verified the vulnerability and confirmed its existence.

Technical details of the vulnerability are currently hidden ("On Hold") to give website owner time to patch the vulnerability without putting any of its users at risk.

If you are the website owner, administrator or authorized third-party, please contact the researcher directly for vulnerability details and coordinated disclosure.

Important: we never act as intermediary between you and the researcher. It's completely up to you to decide if, and how, to thank the researcher. In some cases a 'thank you' email is enough, in others something more remarkable would be good to recognize his, or her, efforts and time. A recommendation may be a good idea.

colourlovers.com Description

Color Trends + Palettes :: COLOURlovers. COLOURlovers is a creative community where people from around the world create and share colors, palettes and patterns, discuss the latest trends and explore colorful articles... All in the spirit of love.

Notification & Disclosure Timeline

10 January, 2017 at 02:01 GMTVulnerability reported via Open Bug Bounty
10 January, 2017 at 02:04 GMTNotification sent to generic security emails
10 January, 2017 at 06:17 GMTNotification sent to subscribers (without technical details)

colourlovers.com Ranking:

Alexa Rank15488
VIP website statusYes
Check colourlovers.com for malware:Click here

Comments:

Please login via twitter to be the first one to comment.


Latest Vulnerabilities on *.colourlovers.com

Vulnerability Reported by Type Status Reported on
Open Bug Bounty
On Hold
10.01.2017
Open Bug Bounty
On Hold
09.12.2016
Open Bug Bounty
On Hold
07.12.2016

Latest Vulnerabilities Reported by k0t

Domain Type Status Reported
Open Bug Bounty
On Hold
13.03.2017
Open Bug Bounty
On Hold
13.03.2017
Open Bug Bounty
On Hold
08.03.2017
Open Bug Bounty
On Hold
08.03.2017
Open Bug Bounty
On Hold
03.03.2017
Open Bug Bounty
On Hold
27.02.2017
Open Bug Bounty
On Hold
27.02.2017
Open Bug Bounty
On Hold
24.02.2017
Open Bug Bounty
On Hold
24.02.2017
Open Bug Bounty
On Hold
24.02.2017
Open Bug Bounty
On Hold
24.02.2017
Open Bug Bounty
On Hold
24.02.2017
Open Bug Bounty
On Hold
14.02.2017
Open Bug Bounty
On Hold
09.02.2017
Open Bug Bounty
On Hold
08.02.2017
Open Bug Bounty
On Hold
07.02.2017
Open Bug Bounty
On Hold
07.02.2017
Open Bug Bounty
On Hold
07.02.2017
Open Bug Bounty
On Hold
07.02.2017
Open Bug Bounty
On Hold
07.02.2017

Latest VIP Submissions

deepdyve.com
Reported by porthunter Twitter: @porthunter
Recommendations received: 1
Approved XSS vulnerabilities: 306
Approved XSS vulnerabilities on VIP websites: 130
on 27.03.2017
tvzvezda.ru
Reported by porthunter Twitter: @porthunter
Recommendations received: 1
Approved XSS vulnerabilities: 306
Approved XSS vulnerabilities on VIP websites: 130
on 27.03.2017
firmenwissen.de
Reported by badmaxx Twitter: @_badmaxx_
Approved XSS vulnerabilities: 131
Approved XSS vulnerabilities on VIP websites: 1
on 27.03.2017
vto.pe
Reported by qiece Twitter: @qiecew9w
Recommendations received: 3
Approved XSS vulnerabilities: 176
Approved XSS vulnerabilities on VIP websites: 10
on 27.03.2017
antyradio.pl
Reported by DonkeyJJLove Twitter: @DonkeyJJLove
Recommendations received: 9
Approved XSS vulnerabilities: 904
Approved XSS vulnerabilities on VIP websites: 272
on 27.03.2017
porsche.com
Reported by Random_Robbie Twitter: @Random_Robbie
Recommendations received: 9
Approved XSS vulnerabilities: 1981
Approved XSS vulnerabilities on VIP websites: 110
on 27.03.2017
ancestry.co.uk
Reported by Random_Robbie Twitter: @Random_Robbie
Recommendations received: 9
Approved XSS vulnerabilities: 1981
Approved XSS vulnerabilities on VIP websites: 110
on 27.03.2017
classiccars.com
Reported by TvM Recommendations received: 20
Approved XSS vulnerabilities: 1409
Approved XSS vulnerabilities on VIP websites: 421
on 27.03.2017
jlm2017.fr
Reported by DrStache Twitter: @DrStache_
Recommendations received: 27
Approved XSS vulnerabilities: 4536
Approved XSS vulnerabilities on VIP websites: 206
on 27.03.2017
bunshun.jp
Reported by porthunter Twitter: @porthunter
Recommendations received: 1
Approved XSS vulnerabilities: 306
Approved XSS vulnerabilities on VIP websites: 130
on 27.03.2017

Latest Submissions

inwerk-kuechen.de
Reported by secuninja Recommendations received: 3
Approved XSS vulnerabilities: 141
Approved XSS vulnerabilities on VIP websites: 6
on 27.03.2017
musterring.com
Reported by secuninja Recommendations received: 3
Approved XSS vulnerabilities: 141
Approved XSS vulnerabilities on VIP websites: 6
on 27.03.2017
navodayahyd.gov.in
Reported by NullVoid223 Twitter: @NullVoid223
Approved XSS vulnerabilities: 13
Approved XSS vulnerabilities on VIP websites: 3
on 27.03.2017
thanecity.gov.in
Reported by NullVoid223 Twitter: @NullVoid223
Approved XSS vulnerabilities: 13
Approved XSS vulnerabilities on VIP websites: 3
on 27.03.2017
idtr.gov.in
Reported by NullVoid223 Twitter: @NullVoid223
Approved XSS vulnerabilities: 13
Approved XSS vulnerabilities on VIP websites: 3
on 27.03.2017
wieser-kuechen.de
Reported by secuninja Recommendations received: 3
Approved XSS vulnerabilities: 141
Approved XSS vulnerabilities on VIP websites: 6
on 27.03.2017
daheim.de
Reported by secuninja Recommendations received: 3
Approved XSS vulnerabilities: 141
Approved XSS vulnerabilities on VIP websites: 6
on 27.03.2017
digitaltvshop.de
Reported by secuninja Recommendations received: 3
Approved XSS vulnerabilities: 141
Approved XSS vulnerabilities on VIP websites: 6
on 27.03.2017
stagemakeuponline.com
Reported by porthunter Twitter: @porthunter
Recommendations received: 1
Approved XSS vulnerabilities: 306
Approved XSS vulnerabilities on VIP websites: 130
on 27.03.2017
officebusters.com
Reported by porthunter Twitter: @porthunter
Recommendations received: 1
Approved XSS vulnerabilities: 306
Approved XSS vulnerabilities on VIP websites: 130
on 27.03.2017