1. General
  2. Bugs
0
Not a bug

AAre you aware of this problem. A cross-site scripting (XSS) vulnerability on your website. The location is Description: ,email,emailaddress,,Description: ,dateofdeath,sunset,Description: ,dateofdeath,sunset

DDanny 7 months ago updated by Michael J. Radwin 7 months ago 2

Host gator discovered this  vulnerability today in the yahrzeit calculator . A cross-site scripting (XSS) vulnerability . The location is Description: ,email,emailaddress,,Description: ,dateofdeath,sunset,

Any ideas how to correct?

Answer

Answer
Not a bug
Michael J. Radwin 7 months ago

Thanks for contacting Hebcal! The warnings in the screenshot you attached seem to be for a website called yahrzeitmemorial.net which is not affiliated with Hebcal.com. We regret that we cannot help with that website. Please contact the owner of yahrzeitmemorial.net to ask them to address the cross site scripting bug.

Answer
Not a bug
Michael J. Radwin 7 months ago

Thanks for contacting Hebcal! The warnings in the screenshot you attached seem to be for a website called yahrzeitmemorial.net which is not affiliated with Hebcal.com. We regret that we cannot help with that website. Please contact the owner of yahrzeitmemorial.net to ask them to address the cross site scripting bug.

Under review
Michael J. Radwin 7 months ago

Thank you. To report an issue in Hebcal.com, please contact security@hebcal.com. Please allow a reasonable time (1-2 business days) for a response after reporting.

Please include an exact URL or screenshot and steps to reproduce the XSS vulnerability.

Customer support service by UserEcho