Coordinated Vulnerability Disclosure
On the 17.02.2017 security researcher HackerCame Approved XSS vulnerabilities: 65 reported a XSS vulnerability affecting the expandore.biz website via the Open Bug Bounty vulnerability disclosure program. We verified the vulnerability and confirmed its existence.
Technical details of the vulnerability are currently hidden ("On Hold") to give website owner time to patch the vulnerability without putting any of its users at risk.
If you are the website owner, administrator or authorized third-party, please contact the researcher directly for vulnerability details and coordinated disclosure.
Important: we never act as intermediary between you and the researcher. It's completely up to you to decide if, and how, to thank the researcher. In some cases a 'thank you' email is enough, in others something more remarkable would be good to recognize his, or her, efforts and time. A recommendation may be a good idea.
|Expandore Online- Professional Audio Video & Broadcast Equipment. Specializing in professional video and broadcasting equipment including Plasma, CCTV, Color Board Cameras, LCD Projectors, DVCPRO Tapes, Broadcast ENG Lens and more from Singapore.|
Notification & Disclosure Timeline
|17 February, 2017 at 12:31 GMT||Vulnerability reported via Open Bug Bounty|
|17 February, 2017 at 12:34 GMT||Notification sent to generic security emails|
|VIP website status||No|
|Check expandore.biz for malware:||Click here|
|Check expandore.biz SSL connection:||Click here (Grade: F) Refresh Results|
Please login via twitter to be the first one to comment.
Latest Vulnerabilities on *.expandore.biz
|Vulnerability||Reported by||Type||Status||Reported on|
Open Bug Bounty