This is the T-shirt you get from the dutch government if you email them with a vulnerability. I emailed them about 5 XSS so far and got this t-shirt from them. To disclose responsibly go to https://www.ncsc.nl/english/Incident+Response/responsible-disclosure-report.html I have a list that is a […]
You get the same XSS payload working on the same sites over and over… ignore the bottom 2 but this just highlights what can happen. Payload to be disclosed in 6 weeks.
https://www.openbugbounty.org/incidents/226789/ Notification & Disclosure Timeline 22 April, 2017 at 13:27 GMT Vulnerability reported via Open Bug Bounty 24 April, 2017 at 04:33 GMT Vulnerability verified and confirmed 24 April, 2017 at 06:17 GMT Notification sent to subscribers (without technical details) 26 April, 2017 at 09:32 […]