Scam Alert: boat-lifestyle.com — Responsible Disclosure – Reflected XSS Vulnerability in Search Input on boat-lifestyle.com
Company / Program: boat-lifestyle.com
Platform: Self-Hosted · Severity: high · Scam type: ignored
Published:
Reported by: Drag0nSlay
A Reflected Cross-Site Scripting (XSS) vulnerability exists in the search input on https://www.boat-lifestyle.com.
This vulnerability allows an attacker to inject and execute arbitrary JavaScript code in the context of a victim’s browser.
If exploited, it could result in:
Theft of session cookies (leading to account/session hijacking).
Redirection of users to malicious websites.
Execution of arbitrary scripts (e.g., keyloggers, phishing forms).
Defacement or injection of malicious content.