BugCrowd Bug Bounty Disclosure: P5 – Self Reflected XSS on target.nasa.gov via unescaped user input in field – cybersamir

August 2, 2025
Self Reflected XSS on target.nasa.gov via unescaped user input in field

Self Reflected XSS on target.nasa.gov via unescaped user input in field

Researcher: cybersamir
Engagement: National Aeronautics and Space Administration (NASA) – Vulnerability Disclosure Program
Disclosed at: 2025-08-01T19:28:27Z
Priority: P5
Status: Informational

Summary

Self Reflected

Activity Feed

Actor Details Timestamp (UTC)
Martin_NASA Martin_NASA published 2025-08-01T19:28:27Z
teapot_bugcrowd teapot_bugcrowd changed the state to to informational 2025-07-28T20:01:29Z
teapot_bugcrowd teapot_bugcrowd sent a: message 2025-07-28T20:01:26Z
cybersamir cybersamir requested 2025-07-28T19:43:26Z
cybersamir cybersamir created the submission 2025-07-28T18:58:48Z

A considerable amount of time and effort goes into maintaining this website, creating backend automation and creating new features and content for you to make actionable intelligence decisions. Everyone that supports the site helps enable new functionality.

If you like the site, please support us on “Patreon” or “Buy Me A Coffee” using the buttons below

Buy Me A Coffee
Patreon

To keep up to date follow us on the below channels.

Tags: , ,

You may have missed

image

CVE Alert: CVE-2025-8480

August 2, 2025
image

CVE Alert: CVE-2025-8477

August 2, 2025
image

CVE Alert: CVE-2025-6037

August 2, 2025
image

CVE Alert: CVE-2025-6015

August 2, 2025
image

CVE Alert: CVE-2025-8472

August 2, 2025