Summary by tejaspawar172000
Can i disclose my?
Critical information disclosure at https://www.doi.gov/
Disclosed by tejaspawar172000- Engagement Department of Interior: Vulnerability Disclosure Program
- Disclosed date over 4 years ago
- Priority P5 Bugcrowd's VRT priority rating
- Status Informational This vulnerability is seen as an accepted business risk
Report details
-
Submitted
-
Target Location
*.doi.gov -
Target category
Web App
-
VRT
Sensitive Data Exposure > Disclosure of Known Public Information -
Priority
P5 -
Bug URL
https://pdsimage2.wr.usgs.gov/data/ -
Description
Summary :
hello Team ,
while Exploring Your Site https://www.doi.gov/ .I found that Search Parameter is vulnerable And it is diclosing the path that gives access to critical information.Vulnerable URL:-
https://search.usa.gov/search?affiliate=doi.gov&query=%5c%22%3balert(%27XSS%27)%3b%2f%2f&commit=Searchhttps://pdsimage2.wr.usgs.gov/data/
Impact :-
The impact here can be great because Attacker Is Able To Gain sensitive Information About target
Step-by-step Reproduction Instructions :-
1 . Go to https://www.doi.gov/
2 . perform search operation using payload \";alert('XSS');//
3 . It discloses the path
https://pdsimage2.wr.usgs.gov/data/mgs-m-moc-na_wa-2-sdp-l0-v1.0/mgsc_1111/- Go to below Path https://pdsimage2.wr.usgs.gov/data/mgs-m-moc-na_wa-2-sdp-l0-v1.0/mgsc_1111/ It is disclosing The Sensitive information.
POC: